Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The latest News and Information on Application Security including monitoring, testing, and open source.

Risk Mitigation and Cybersecurity Strategy with Samuel Brown | Secrets of AppSec Champions Podcast

Jul 17, 2025 By Mend In Mend
As cyber threats evolve, so must the strategies to prevent them. In this episode, Samuel Brown—CEO of PacketX and retired U.S. Army CW4—shares mission-critical insights on risk mitigation, layered security, and why backups and plans on paper aren't enough. From ransomware recovery to real-world network defense, this conversation is packed with hard-earned lessons for AppSec professionals and business leaders alike.
View Video
aikido

Harden Your Containers with Aikido x Root

Jul 17, 2025 By Trusha Sharma In Aikido
TL;DR: Aikido and Root have teamed up to deliver hardened container images that fix vulnerabilities fast while letting you keep your current base image. Patch timelines shrink from months to minutes. More about the launch below, or check out our docs. Keeping containers secure isn’t as simple as “just update.” While it sounds straightforward, anyone who’s tried it in a real app knows it’s far from easy.
Read Post
veracode

The Future of Generative AI in Application Security

Jul 15, 2025 By Natalie Tischler In Veracode
As generative AI revolutionizes how we write software, it’s also reshaping how we secure it. Tools like GitHub Copilot and ChatGPT now allow developers to write functional applications with just a few prompts. This growing trend, dubbed “vibe coding,” represents a fundamental shift in development philosophy: developers rely on AI-generated code and focus more on ideas than implementation. This unlocks speed and creativity, but it also exposes new and serious security risks.
Read Post
aikido

Securing Legacy Dependencies with Aikido and TuxCare

Jul 15, 2025 By Trusha Sharma In Aikido
TL;DR We’ve partnered with TuxCare so you can fix vulnerabilities in legacy dependencies instantly, without rewrites or risky upgrades. Stay secure, compliant, and keep building without trade-offs. Read on for the full launch, or check out our docs to go deeper. As engineering teams scale, managing vulnerabilities in third-party libraries becomes one of the biggest blockers to shipping safely and quickly.
Read Post
mend

What Is Application Security Posture Management (ASPM)?

Jul 11, 2025 By Mend.io Team In Mend
Application security posture management (ASPM) centralizes and automates the monitoring, evaluation, and management of application security across an organization’s software lifecycle. ASPM provides a unified view of the risk posture by aggregating data from various security tools, such as static application security testing (SAST), dynamic application security testing (DAST), software composition analysis (SCA), and runtime protection solutions.
Read Post

Security Automation: Sleep Better Tonight! #podcast #cybersecurity

Jul 11, 2025 By Mend In Mend
Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.
View Video

Navigating Identity and Security in the Age of Agentic AI

Jul 10, 2025 By Datadog In Datadog
As AI agents rapidly improve, becoming more autonomous and interconnected, they unlock new ways to assist us. But as they perform actions for us and delegate tasks to other AI agents, we need to reexamine our understanding of “identity.” How do we ensure these powerful AI interactions are authentic, authorized, and permissioned, while differentiating between legitimate actions and potential misuse?Join Datadog co-founder and CTO Alexis Lê-Quôc and Okta CTO Bhawna Singh as they explore the convergence of AI, security, and observability.
View Video

AppSec Tools: From Reactive to Proactive, Devs Take Action! #developer #appsec

Jul 10, 2025 By Mend In Mend
Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.
View Video

Don't Let Your AI Be the Next Log4j

Jul 8, 2025 By Mend In Mend
Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.
View Video

Developers: Build Trust, Foster Security Culture, Stay Updated! #developers #appsec

Jul 7, 2025 By Mend In Mend
Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.