February 2023

How to integrate continuous API fuzzing into the CI/CD?

Feb 28, 2023 By Cenk Kalpakoğlu In Kondukto

API security is a growing concern for businesses that offer or consume APIs. APIs, or application programming interfaces, allow different software systems to communicate and exchange data. They allow businesses to build integrations and connect with partners, customers, and other stakeholders. However, as more sensitive data is being shared through APIs, it is essential to ensure that these interfaces are secure and protected from unauthorized access or manipulation. In this blog post, we'll discuss how continuous fuzzing can be a powerful tool to secure APIs and how developers can adopt a "secure by default" approach by integrating continuous fuzzing into SDLC processes.

Read Post

Kondukto

Read more about How to integrate continuous API fuzzing into the CI/CD?

AppSec Decoded: Open source trends uncovered in the 2023 OSSRA report | Synopsys

Feb 28, 2023 By Synopsys In Synopsys

Discover what the 2023 OSSRA report tells us about the popularity of open source and the risks it brings.

View Video

Synopsys

Read more about AppSec Decoded: Open source trends uncovered in the 2023 OSSRA report | Synopsys

SAST Tools: How to Integrate and Scale Security Workflows in the SDLC

Feb 28, 2023 By Juan In Veracode

Static Application Security Testing (SAST) tools present a significant opportunity for organizations looking to reduce application security risk. However, not all workflows or tools are created equal. Using the right SAST tools at the right times, you can seamlessly integrate and scale security workflows throughout the software development lifecycle (SDLC).

Read Post

Veracode

Read more about SAST Tools: How to Integrate and Scale Security Workflows in the SDLC

The CISO's Guide to Application Security Innovation

Feb 21, 2023 By Chris Lindsey In Mend

Threat actors operate by an ironclad rule: If it’s important to businesses, it’s important to them. And they certainly understand the crucial business role of applications. Applications are now the number one attack vector, while software supply chain attacks increased 650 percent in a year. Clearly, if you don’t already have a modern application security program, you need to build one. But how do you make sure that your program will be effective?

Read Post

Mend

Read more about The CISO's Guide to Application Security Innovation

Block attackers in your apps and APIs with Datadog Application Security Management

Feb 14, 2023 By Thomas Sobolik In Datadog

Securing modern-day production systems is complex and requires a variety of measures—from secure coding practices and security testing to network protection and vulnerability scanning. Scaling these solutions to keep pace with the speed of development teams can be difficult, resulting in sprawling workflows and disparate sets of tooling.

Read Post

Datadog

Read more about Block attackers in your apps and APIs with Datadog Application Security Management

Building a Modern AppSec Strategy: How to Secure Applications

Feb 14, 2023 By Adam Murray In Mend

Threat actors today are increasingly targeting the application layer, driving significant challenges for companies using traditional application security strategies. To defend themselves against the rapidly evolving threat landscape, organizations need to build a modern AppSec strategy that addresses these fast-changing conditions. But how?

Read Post

Mend

Read more about Building a Modern AppSec Strategy: How to Secure Applications

Veracode Container Security

Feb 6, 2023 By Veracode In Veracode

Introducing Veracode Container Security - this new tool is now seamlessly integrated with the Continuous Software Security Platform. Veracode Container Security is a command line interface (CLI) tool that integrates into your pipeline with ease. This empowers developers to secure containers earlier in the software development life cycle, ensuring containers are built and deployed securely.

View Video

Veracode

Read more about Veracode Container Security

AppSec Decoded: Takeaways from the 2022 "Software Vulnerability Snapshot"report | Synopsys

Feb 3, 2023 By Synopsys In Synopsys

Watch the second episode to uncover the major takeaways including the so-called low-risk software vulnerabilities to common software supply chain attacks, and more.

View Video

Synopsys

Read more about AppSec Decoded: Takeaways from the 2022 "Software Vulnerability Snapshot"report | Synopsys

Difference to Know: Cyber Security, Software Security, Application Security

Feb 3, 2023 By SignMyCode In SignMyCode

Did you know that when we talk about online security, cyber security, application security, and software security are all different? Sometimes, software security and application security are used interchangeably. However, there is a key difference between these two; both are different from cyber security. Application security is a more reactive approach and software security, on the other hand, has a more proactive approach.

Read Post

SignMyCode

Read more about Difference to Know: Cyber Security, Software Security, Application Security

4 application security bad habits to ditch in 2023 (and best practices to adopt instead)

Feb 2, 2023 By Belyn Lai In Snyk

Regardless of how last year went, a few things probably come to mind that you’d like to leave in 2022. Maybe it’s a bad habit you’d like to drop or a mindset you’d like to change. But speaking of ditching bad habits, some poor cloud application security practices shouldn’t carry over to 2023 either!

Read Post

Snyk

Read more about 4 application security bad habits to ditch in 2023 (and best practices to adopt instead)

Software and AppSec Challenges and Opportunities in Banking and Fintech - Part Three

Feb 2, 2023 By Adam Murray In Mend

Application security is particularly important in the banking and financial technology sector, where a single breach can put large portions of sensitive information at risk. How to manage that risk is a complex process that affects how teams secure applications across their software supply chain.

Read Post

Mend

Read more about Software and AppSec Challenges and Opportunities in Banking and Fintech - Part Three

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

February 2023

How to integrate continuous API fuzzing into the CI/CD?

AppSec Decoded: Open source trends uncovered in the 2023 OSSRA report | Synopsys

SAST Tools: How to Integrate and Scale Security Workflows in the SDLC

The CISO's Guide to Application Security Innovation

Block attackers in your apps and APIs with Datadog Application Security Management

Building a Modern AppSec Strategy: How to Secure Applications

Veracode Container Security

AppSec Decoded: Takeaways from the 2022 "Software Vulnerability Snapshot"report | Synopsys

Difference to Know: Cyber Security, Software Security, Application Security

4 application security bad habits to ditch in 2023 (and best practices to adopt instead)

Software and AppSec Challenges and Opportunities in Banking and Fintech - Part Three

Monthly Archive

Follow Us