Application Security

The latest News and Information on Application Security including monitoring, testing, and open source.

Three Takeaways on Cloud Security from the IBM Data Breach Report 2023

Aug 29, 2023 By Shweta Khare In Panoptica

IBM’s annual Cost of a Data Breach Report offers its usual insights into the scale of cybercrime and the costs of security breaches. It paints a picture of a technological landscape which is becoming more complex, demanding and uncertain. As organizations increasingly migrate to cloud platforms, the need to fortify these digital landscapes against a plethora of threats has never been more crucial. So, what are the biggest takeaways from this year’s report with focus on cloud security?

Read Post

Panoptica

Read more about Three Takeaways on Cloud Security from the IBM Data Breach Report 2023

A Guide to Becoming a Product Security Engineer

Aug 28, 2023 By Cenk Kalpakoğlu In Kondukto

As companies increasingly digitalized, the necessity for cybersecurity has never been more vital. Product security engineers are in great demand since they are responsible for securing software products, operating systems, and the underlying infrastructure against potential attacks. Assuming you're interested in cybersecurity and want to work in it, this article will provide the information you need to begin your own career path as a product and application security engineer.

Read Post

Kondukto

Read more about A Guide to Becoming a Product Security Engineer

AppSec Decoded: The four most common vectors for malicious code | Synopsys

Aug 28, 2023 By Synopsys In Synopsys

Explore the threat of malicious packages in the npm ecosystem and learn about the four most common ways attackers create and insert malicious code into packages.

View Video

Synopsys

Read more about AppSec Decoded: The four most common vectors for malicious code | Synopsys

Webinar | Securing Application Workloads, APIs, and Serverless Functions with Panoptica

Aug 25, 2023 By Shweta Khare In Panoptica

Application architectures have been transformed in recent years. Modern application systems have become more complex with monolithic applications being replaced by more complicated applications based on multiple microservices and stored on cloud platforms. These applications run on new technologies based on Kubernetes, an open-source container orchestration system that automates the deployment, scaling, and management of containerized applications.

Read Post

Panoptica

Read more about Webinar | Securing Application Workloads, APIs, and Serverless Functions with Panoptica

Malicious Packages Special Report Overview

Aug 24, 2023 By Mend In Mend

Malicious Packages: A Growing Threat to the Software Supply Chain The global economy runs on software applications, and their function and security are critical to every company’s success. Many applications have exploitable vulnerabilities that modern defenders struggle to effectively detect and remediate. In addition to the growing number of vulnerabilities, today’s security teams face the emerging challenge of malicious packages.

View Video

Mend

Read more about Malicious Packages Special Report Overview

Achieve frictionless AppSec for developers with Polaris | Synopsys

Aug 23, 2023 By Synopsys In Synopsys

The Polaris Software Integrity Platform® offers developer-enabled features that create frictionless application security for both dev and DevOps.

View Video

Synopsys

Read more about Achieve frictionless AppSec for developers with Polaris | Synopsys

How to Shift-Left Better with Git Hooks

Aug 22, 2023 By Cenk Kalpakoğlu In Kondukto

The philosophy of "shifting left" in software development is transforming the way we approach error and resolution. By moving the focus of error detection to earlier stages in the development cycle, teams can address issues when they are more accessible and less expensive to fix. Integral to this shift-left approach are Git hooks, powerful tools that allow us to enforce quality control right from the code-commit stage.

Read Post

Kondukto

Read more about How to Shift-Left Better with Git Hooks

Five Key Application Security Best Practices and Benefits for Maintaining Up-to-Date Dependencies

Aug 22, 2023 By Rhys Arkins In Mend

We’re using more code, software components, and dependencies than ever before, making security breaches an ever-growing threat. It’s easy for developers and DevOps teams to neglect dependency updates when faced with such high volume, but doing so allows applications to fall behind the latest versions if not properly managed. This typically leaves applications using outdated dependencies, which exposes them to ever-increasing security debt and risk.

Read Post

Mend

Read more about Five Key Application Security Best Practices and Benefits for Maintaining Up-to-Date Dependencies

An Introduction to Application Security

Aug 21, 2023 By Jeff Darrington In Graylog

While security teams may “run on Dunkin’,” companies run on applications. From Salesforce and Hubspot to ServiceNow and Jira, your organization relies on a complex, interconnected application ecosystem. In 2022, organizations used an average of 130 Software-as-a-Service (SaaS) applications. While these technologies enabled them to reduce costs and achieve revenue targets, they created new security risks.

Read Post

Graylog

Read more about An Introduction to Application Security

Does GitOps enhance application security?

Aug 21, 2023 By Vandana Verma Sehgal In Snyk

GitOps was pioneered by Weeveworks in 2017. It uses familiar tools to implement continuous deployment for cloud-native applications, improving the developer experience of Kubernetes cluster management and application delivery.

Read Post