#application-security

[ follow ]
Privacy technologies
fromDevOps.com
4 days ago

Survey Traces Large Amount of Breaches Back to Vulnerable Code - DevOps.com

Nearly all surveyed organizations experienced breaches from vulnerable code, with many shipping known vulnerabilities to meet deadlines.
Silicon Valley
fromTechzine Global
1 week ago

Palo Alto Networks launches Cortex Cloud ASPM module

Cortex Cloud Application Security Posture Management helps prevent security issues before deployment, boasting speed and cost-effectiveness.
#ai
fromDevOps.com
1 week ago
Artificial intelligence

Cycode Delivers AI Agent to Assess How Exploitable Vulnerabilities Are - DevOps.com

fromDevOps.com
1 week ago
Artificial intelligence

Cycode Delivers AI Agent to Assess How Exploitable Vulnerabilities Are - DevOps.com

fromTechzine Global
1 week ago

Upwind drafts in Nyx for cloud security keyhole surgery

Upwind's acquisition of Nyx enhances application security through function-level runtime visibility for real-time threat detection and vulnerability prioritization.
fromDevOps.com
3 weeks ago

Survey Surfaces Widespread Adoption of AI to Build Software - DevOps.com

Conducted by Dynata on behalf of Infragistics, a survey finds 90% of IT leaders are using AI tools in application development, with 71% not hiring developers lacking AI experience.
Artificial intelligence
fromComputerWeekly.com
3 weeks ago

Is it time to rethink the OWASP Top 10? | Computer Weekly

The OWASP Top 10 faces challenges in driving meaningful change in application security despite raising awareness about prevalent vulnerabilities.
#devsecops
fromDevOps.com
3 weeks ago
Privacy technologies

Veracode Allies with Wiz to Bring More Context to DevSecOps Workflows - DevOps.com

fromHackernoon
2 years ago
Information security

From Repos to Risks: How Hardcoded Secrets in GitHub Source Code Create Security Risks | HackerNoon

fromDevOps.com
4 months ago
Artificial intelligence

Symbiotic Security Unveils AI Coding Tool Trained to Identify Vulnerabilities - DevOps.com

fromDevOps.com
3 weeks ago
Privacy technologies

Veracode Allies with Wiz to Bring More Context to DevSecOps Workflows - DevOps.com

Information security
fromHackernoon
2 years ago

From Repos to Risks: How Hardcoded Secrets in GitHub Source Code Create Security Risks | HackerNoon

Hardcoded secrets in source code expose organizations to significant security risks, necessitating greater awareness and secure practices in development environments.
fromDevOps.com
4 months ago
Artificial intelligence

Symbiotic Security Unveils AI Coding Tool Trained to Identify Vulnerabilities - DevOps.com

#mobile-security
Ruby on Rails
fromAmazon Web Services
2 months ago

Secure your Express application APIs in minutes with Amazon Verified Permissions | Amazon Web Services

Amazon Verified Permissions introduces a new open-source package that simplifies external fine-grained authorization for Express.js applications, enhancing security and reducing code complexity.
#software-development
fromIT Pro
3 months ago
Information security

CISOs take the back seat as dev teams claim responsibility for application security

fromIT Pro
3 months ago
Information security

CISOs take the back seat as dev teams claim responsibility for application security

Information security
fromInfoWorld
2 months ago

Digital AI introduces Quick Protect Agent, a no-code way to protect mobile apps

The Quick Protect Agent helps balance security and performance for applications by creating tailored security profiles.
fromCmsreport
2 months ago

Static vs Dynamic Security Testing: Key Differences and Use Cases

Application security is critical in a digital world, with security testing like SAST and DAST being essential for identifying vulnerabilities and enhancing security postures.
DevOps
Information security
fromSecuritymagazine
2 months ago

More than 40% of Fintech Breaches Linked to Third-Party Vendors

Fintech companies show strong cybersecurity scores but face significant vulnerabilities from third-party risk.
Application security weaknesses are prevalent in the fintech sector, exposing firms to breaches.
fromDevOps.com
2 months ago

Futurum Group Survey Surfaces DevSecOps Progress on Multiple Fronts - DevOps.com

Investments in software supply chain security are critical, with ASPM and DevSecOps automation being top priorities.
#api-security
fromInfoWorld
3 months ago
Software development

7 application security startups at RSAC 2025

Startups are leveraging AI to enhance API and application security throughout the application lifecycle.
fromTechzine Global
3 months ago
Software development

Snyk launches API & Web to revamp DAST

APIs are crucial in connecting LLMs and applications, presenting security risks in AI software development.
fromThe Hacker News
3 months ago

New Research Reveals: 95% of AppSec Fixes Don't Reduce Risk

Most application security alerts are unnecessary, causing more harm than good for organizations.
Application security has become inefficient, with teams overwhelmed by irrelevant alerts.
Improving application security requires a shift from mere detection to meaningful context.
NYC startup
fromTechzine Global
3 months ago

Upwind makes its M&A debut with Nyx acquisition

Upwind's acquisition of Nyx enhances real-time threat detection and integrates deeper application monitoring into its platform.
Artificial intelligence
fromIT Pro
3 months ago

Want to supercharge your vibe coding skills? Here are the best AI models developers can use to generate secure code

Vibe coding poses risks as AI-generated code often lacks adequate security measures, leading to vulnerabilities.
fromDevOps.com
3 months ago

Endor Labs Adds AI Agents to Automate Application Security Reviews - DevOps.com

Endor Labs introduces AI agents for advanced security defect identification and remediation in application architecture.
fromDevOps.com
4 months ago

Report: Bulk of Application Vulnerabilities Don't Require Immediate Attention - DevOps.com

Most security alerts are informational, with only a small fraction needing immediate attention.
Context-based prioritization can drastically reduce the number of alerts developers need to address.
Many critical vulnerabilities are either minimally exploitable or related to dependencies, making remediation difficult.
The use of AI in coding is contributing to developers ignoring security alerts.
[ Load more ]