Monthly Archive

Best Software Composition Analysis (SCA) Tools: Top 6 Solutions in 2025

Jun 30, 2025 By Mend.io Team In Mend

Quick Answer: The top SCA tools in 2025 are Mend.io (best for automated remediation and proactive SCA), Sonatype Lifecycle (known for enterprise policy management), Snyk (known for developer experience), and Checkmarx SCA (known for comprehensive coverage). According to industry reports, organizations using SCA tools can reduce vulnerability remediation time by up to 80%.

Read Post

Mend

Read more about Best Software Composition Analysis (SCA) Tools: Top 6 Solutions in 2025

Why AI Security is Suddenly a Big Deal

Jun 30, 2025 By Mend In Mend

Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.

View Video

Mend

Read more about Why AI Security is Suddenly a Big Deal

Best Application Security Testing Tools: Top 10 Tools in 2025

Jun 28, 2025 By Mend.io Team In Mend

What Are Application Security Testing Tools? Application security testing (AST) tools identify vulnerabilities and weaknesses in software applications. These tools assess code, application behavior, or its environment to detect potential security risks. They help developers and security teams prevent cyberattacks by addressing security issues during the development and deployment phases.

Read Post

Mend

Read more about Best Application Security Testing Tools: Top 10 Tools in 2025

Best SAST Solutions: How to Choose Between the Top 11 Tools in 2025

Jun 27, 2025 By Mend.io Team In Mend

Best SAST Solutions: How to Choose Between the Top 11 Tools in 2025 Static Application Security Testing (SAST) is a proactive approach to identifying security vulnerabilities in source code during development. This article delves into the core features of SAST tools, reviews leading solutions, and provides guidance on selecting the right tool to enhance your software’s security posture.

Read Post

Mend

Read more about Best SAST Solutions: How to Choose Between the Top 11 Tools in 2025

Shift Security Left! Integrate Security Early in Your SDLC! #cybersecurity #securityteam

Jun 27, 2025 By Mend In Mend

View Video

Mend

Read more about Shift Security Left! Integrate Security Early in Your SDLC! #cybersecurity #securityteam

Securing AI code at the source: Mend.io now integrates with Cursor AI Code Editor

Jun 26, 2025 By Mend.io Team In Mend

AI is reshaping software development quickly. From boilerplate generation to test automation and refactoring, LLMs like the one behind Cursor are transforming how developers build. But with great power comes a new generation of vulnerabilities. At Mend.io, we’re excited to announce a native integration with Cursor, the IDE taking the dev world by storm.

Read Post

Mend

Read more about Securing AI code at the source: Mend.io now integrates with Cursor AI Code Editor

Software Security: Treat Vulnerabilities Like Regular Bugs! #cybersecurity #softwaresecurity

Jun 26, 2025 By Mend In Mend

View Video

Mend

Read more about Software Security: Treat Vulnerabilities Like Regular Bugs! #cybersecurity #softwaresecurity

Security Team's Secret: How to Make Everyone Love You! #cybersecurity #securityteam

Jun 25, 2025 By Mend In Mend

View Video

Mend

Read more about Security Team's Secret: How to Make Everyone Love You! #cybersecurity #securityteam

Unlock the CISO Secrets: From Developers to the Boardroom! #podcast #cybersecurity

Jun 24, 2025 By Mend In Mend

View Video

Mend

Read more about Unlock the CISO Secrets: From Developers to the Boardroom! #podcast #cybersecurity

How to spot risky chatbot behavior before your customers do

Jun 23, 2025 By Mend In Mend

View Video

Mend

Read more about How to spot risky chatbot behavior before your customers do

Ransomware Attack Simulation: Did They Survive? #cybersecurity #ransomware

Jun 19, 2025 By Mend In Mend

View Video

Mend

Read more about Ransomware Attack Simulation: Did They Survive? #cybersecurity #ransomware

AI Security Guide: Protecting models, data, and systems from emerging threats

Jun 19, 2025 By Mend.io Team In Mend

AI security is where traditional cybersecurity meets the chaotic brilliance of machine learning. It’s the discipline focused on protecting AI systems—not just the code, but the training data, model logic, and output—from manipulation, theft, and misuse. Because these systems learn from data, not just logic, they open up fresh attack surfaces like data poisoning, model inversion, and prompt injection.

Read Post

Mend

Read more about AI Security Guide: Protecting models, data, and systems from emerging threats

Security Champion: Recruit Volunteers, Not Experts! #Cybersecurity

Jun 18, 2025 By Mend In Mend

View Video

Mend

Read more about Security Champion: Recruit Volunteers, Not Experts! #Cybersecurity

Your Code Might Be Using Risky AI Models

Jun 17, 2025 By Mend In Mend

View Video

Mend

Read more about Your Code Might Be Using Risky AI Models

From Cloud to AI: Innovation, Risk & Business Strategy #ai #podcast

Jun 16, 2025 By Mend In Mend

View Video

Mend

Read more about From Cloud to AI: Innovation, Risk & Business Strategy #ai #podcast

What Our Ransomware Simulation Taught Us #cybersecurity #ransomware

Jun 13, 2025 By Mend In Mend

View Video

Mend

Read more about What Our Ransomware Simulation Taught Us #cybersecurity #ransomware

Shadow AI: Examples, Risks, and 8 Ways to Mitigate Them

Jun 13, 2025 By Mend.io Communications In Mend

Shadow AI refers to the unauthorized or unmanaged use of AI tools, models, frameworks, APIs or platforms within an organization, operating outside established governance frameworks. While employees may adopt these AI tools with good intentions, seeking to enhance productivity or solve problems more efficiently, the lack of oversight creates significant security, compliance, and operational risks.

Read Post

Mend

Read more about Shadow AI: Examples, Risks, and 8 Ways to Mitigate Them

Kubernetes Security Risks and Critical Best Practices

Jun 12, 2025 By Mend.io Team In Mend

Kubernetes security refers to practices, tools, and configurations that protect Kubernetes clusters and workloads from unauthorized access, vulnerabilities, and runtime threats. It involves securing all components of the Kubernetes environment—including the control plane, worker nodes, pods, container images, networking, and storage.

Read Post

Mend

Read more about Kubernetes Security Risks and Critical Best Practices

What does 'software reachability granularity' really mean 2nd Episode

Jun 11, 2025 By Mend In Mend

View Video

Mend

Read more about What does 'software reachability granularity' really mean 2nd Episode

So your chatbot just insulted a customer? #cybersecurity #appsec

Jun 11, 2025 By Mend In Mend

View Video

Mend

Read more about So your chatbot just insulted a customer? #cybersecurity #appsec

Understanding Runtime Reachability 5th Episode

Jun 11, 2025 By Mend In Mend

View Video

Mend

Read more about Understanding Runtime Reachability 5th Episode

The Growing Challenge of Shadow MCP: Unauthorized AI Connectivity in Your Codebase

Jun 10, 2025 By Mend.io Communications In Mend

MCP adoption is surging across industries, fundamentally reshaping how systems connect to AI models. By establishing a universal protocol for data exchange, MCP simplifies integration complexity, empowering developers to build sophisticated AI capabilities in a fraction of the traditional development time. However, this streamlined connectivity to AI tools introduces significant security risks.

Read Post

Mend

Read more about The Growing Challenge of Shadow MCP: Unauthorized AI Connectivity in Your Codebase

Prevent your chatbot from accidentally leaking user data! #cybersecurity

Jun 10, 2025 By Mend In Mend

View Video

Mend

Read more about Prevent your chatbot from accidentally leaking user data! #cybersecurity

How to Secure AI in Your App: Mend AI for AppSec Teams

Jun 9, 2025 By Mend In Mend

View Video

Mend

Read more about How to Secure AI in Your App: Mend AI for AppSec Teams

What is AI Red Teaming?

Jun 9, 2025 By Mend.io Communications In Mend

AI red teaming is the process of simulating adversarial behavior to test the safety, security, and robustness of artificial intelligence systems. It draws inspiration from traditional cybersecurity red teaming (where ethical hackers emulate real attackers to expose flaws) but applies that mindset to machine learning models, data pipelines, and the broader AI stack.

Read Post

Mend

Read more about What is AI Red Teaming?

Best SAST Tools: Top 10 Solutions Compared

Jun 5, 2025 By Mend.io Communications In Mend

SAST tools automatically scan the source code of an application. The goal is to identify vulnerabilities before deployment. SAST tools perform white-box testing, which involves analyzing the code based on inside knowledge of the application. SAST offers granularity in detecting vulnerabilities, providing an assessment down to the line of code.

Read Post