%term

A stepping stone towards holistic application risk and compliance management of the Digital Operational Resiliency Act (DORA)

Jul 11, 2024 By Ben Desjardins In Snyk

In today's increasingly digital world, where businesses rely heavily on technology for core operations, the European Union's Digital Operational Resilience Act (DORA) establishes a comprehensive framework to manage Information and Communication Technology (ICT) related risks and ensure business continuity for financial institutions and critical service providers.

Read Post

Snyk

Read more about A stepping stone towards holistic application risk and compliance management of the Digital Operational Resiliency Act (DORA)

How Does a Browser Polyfill Work?

Jul 10, 2024 By Snyk In Snyk

Watch the full video for more... About Snyk Snyk helps you find and fix vulnerabilities in your code, open-source dependencies, containers, infrastructure-as-code, software pipelines, IDEs, and more! Move fast, stay secure. Connect with Us Hashtags.

View Video

Snyk

Read more about How Does a Browser Polyfill Work?

Going beyond "shift left" to extend AppSec in all directions

Jul 9, 2024 By Ben Desjardins In Snyk

A week before RSA 2024, Forrester predicted which subjects and themes would come to the forefront of the conference. They emphasized that we’d see a focus on proactive security, defined as “a strategic approach to controlling security posture and reducing breaches through strong visibility, prioritization, and remediation.” I went into the conference with this prediction in mind. However, I was surprised by what I found.

Read Post

Snyk

Read more about Going beyond "shift left" to extend AppSec in all directions

Uncovering the Polyfill.io Supply Chain Attack

Jul 8, 2024 By Snyk In Snyk

In this video, we will be uncovering how a sneaky supply chain attack on the JavaScript Polyfill.io service compromised websites across the globe, including big names like Intuit, Square, the U.S. government and more. Stay tuned to find out how the attack occurred and what you can do to prevent it!

View Video

Snyk

Read more about Uncovering the Polyfill.io Supply Chain Attack

Best Practice for Securely Developing with AI - Keep a Human in the Loop

Jul 4, 2024 By Snyk In Snyk

Watch the full video for more...

View Video

Snyk

Read more about Best Practice for Securely Developing with AI - Keep a Human in the Loop

Best Practice for Securely Developing with AI - Restrict Data Access

Jul 3, 2024 By Snyk In Snyk

Watch the full video for more...

View Video

Snyk

Read more about Best Practice for Securely Developing with AI - Restrict Data Access

10 BEST Practices for Securely Developing with AI

Jul 1, 2024 By Snyk In Snyk

AI technology is booming, but are you aware of the hidden security risks? Join us as we explore the 10 best practices to keep your use of AI safe and secure.

View Video

Snyk

Read more about 10 BEST Practices for Securely Developing with AI

How to secure a REST API?

Jun 27, 2024 By Liran Tal In Snyk

As developers, we often have to work with REST APIs when we integrate with third-party systems or connect between frontend and backend systems at work. APIs, and REST APIs in particular, are a fundamental part of modern web applications, allowing us to create, read, update, and delete data over HTTP. However, as with any technology, they come with their own set of security challenges. Let's break these challenges down and understand how to secure REST API applications.

Read Post

Snyk

Read more about How to secure a REST API?

Polyfill supply chain attack embeds malware in JavaScript CDN assets

Jun 26, 2024 By Liran Tal In Snyk

On June 25, 2024, the Sansec security research and malware team announced that a popular JavaScript polyfill project had been taken over by a foreign actor identified as a Chinese-originated company, embedding malicious code in JavaScript assets fetched from their CDN source at: cdn.polyfill.io. Sansec claims more than 100,000 websites were impacted due to this polyfill attack, including publicly traded companies such as Intuit and others.

Read Post

Snyk

Read more about Polyfill supply chain attack embeds malware in JavaScript CDN assets

Snyk Code now secures AI builds with support for LLM sources

Jun 25, 2024 By Liqian Lim () In Snyk

As we enter the age of AI, we’ve seen the first wave of AI adoption in software development in the form of coding assistants. Now, we’re seeing the next phase of adoption take place, with organizations leveraging increasingly widely available LLMs to build AI-enabled software. Naturally, as the adoption of LLM platforms like OpenAI and Gemini grows, so does the security risk associated with using them.

Read Post

Snyk

Read more about Snyk Code now secures AI builds with support for LLM sources

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

A stepping stone towards holistic application risk and compliance management of the Digital Operational Resiliency Act (DORA)

How Does a Browser Polyfill Work?

Going beyond "shift left" to extend AppSec in all directions

Uncovering the Polyfill.io Supply Chain Attack

Best Practice for Securely Developing with AI - Keep a Human in the Loop

Best Practice for Securely Developing with AI - Restrict Data Access

10 BEST Practices for Securely Developing with AI

How to secure a REST API?

Polyfill supply chain attack embeds malware in JavaScript CDN assets

Snyk Code now secures AI builds with support for LLM sources

Monthly Archive

Follow Us