Xebia

FEBRUARY 17, 2023

Introduction Welcome to part two of the Application Security Testing series. Like I mentioned in the previous blog, during this blog series we are going to look at the different types of Application Security Testing and Software Composition Analysis. This time we will focus on Dynamic Application Security Testing (DAST).

Applications 130

Applications Testing Authentication How To 130

TechCrunch

FEBRUARY 12, 2021

Cloud monitoring platform Datadog has announced that it plans to acquire Sqreen , a software-as-a-service security platform. Sqreen is a cloud-based security product to protect your application directly. Sqreen’s security shield automagically blocks attacks on your web app. Sqreen raised a $2.3

Applications 290

Applications Cloud Software Company 290

TechCrunch

OCTOBER 19, 2021

Valence , a Tel Aviv-based security startup that aims to help businesses better protect what Valence calls the “business application mesh,” today announced that it has raised a $7 million seed round, led by YL Ventures. Stonemill Ventures, the St. Image Credits: Valence.

Applications 213

Applications Enterprise Groups Network 213

Synopsys

NOVEMBER 9, 2022

JavaScript, like other programming languages, are not without security challenges. These JavaScript security best practices will help you build more-secure code. The post JavaScript security best practices for securing your applications appeared first on Application Security Blog.

Applications 139

Applications Programming Training Software 139

Dzone - DevOps

JANUARY 19, 2024

In the dynamic landscape of cloud computing, ensuring the security of your applications is paramount. This is particularly true when dealing with a Red Hat OpenShift Kubernetes Service ( ROKS ) cluster, where applications may be exposed to the public internet.

Applications 85

Applications Internet Cloud How To 85

TechCrunch

NOVEMBER 3, 2022

At a time when large rounds are a thing of the past, especially in the early stages, Apiiro , an applications security startup, announced a $100 million Series B today from several top-shelf Silicon Valley firms. What is attracting this kind of investment in a time when investors otherwise are in a period of belt tightening?

Applications 182

Applications Software Engineering Report Engineering 182

DevOps.com

JUNE 24, 2022

When it comes to security, there are many vulnerabilities that can leave your website or web app open to attack. In this article, we’ll go over 15 common web application security vulnerabilities and how you can prevent them. The post Developer’s Guide to Web Application Security appeared first on DevOps.com.

Applications 144

Applications Data Development DevOps 144

Tenable

FEBRUARY 13, 2024

Cybersecurity teams often struggle with securing cloud-native applications, which are becoming increasingly popular with developers. The good news is that deploying these applications on a serverless architecture can make it easier to protect them. Here’s why. What is serverless? How can serverless help?

Serverless 106

Serverless Architecture Applications Cloud 106

TechCrunch

NOVEMBER 23, 2021

As more companies adopt low-code/no-code tools to build their line-of-business applications, it’s maybe no surprise that we are now seeing a new crop of services in this ecosystem that focus on keeping these tools secure. The round was led by Vertex Ventures and UpWest. Image Credits: Zenity.

CTO Coach 217

CTO Coach Applications Government Azure 217

DevOps.com

JUNE 28, 2023

Bionic this week added a pair of tools to its application security posture management (ASPM) platform that make it simpler to triage threats based on severity and attach a risk score.

Applications 112

Applications Engineering Tools System 112

TechCrunch

SEPTEMBER 8, 2021

As companies try to navigate an ever-changing security landscape, it can be challenging to protect everything. Security startup TrueFort has built a zero trust solution focusing on protecting enterprise applications. And he believes that it all comes down to understanding your applications and how they operate.

Applications 224

Applications Recruiting Programming Policies 224

DevOps.com

MAY 11, 2021

Do you follow the same procedures to secure a web application as you do an API? We’ve spoken about API security quite a bit in the past few months because we believe that there are critical differences between API security and traditional web application security. Is there a difference between the two?

Applications 140

Applications Microservices 140

Lacework

DECEMBER 8, 2023

Welcome back to our Q&A series where we spotlight some of the innovative experts behind our code security solution. Today, we’re featuring Christien Rioux, an application security expert with more than 30 years of computer programming and software engineering experience. Q: What first sparked your interest in engineering?

Innovation 135

Innovation Applications Weak Development Team Engineering 135

TechCrunch

JUNE 1, 2022

Code Intelligence , an automated application security testing platform based in Bonn, Germany, that focuses on fuzzing, announced today that it has raised a $12 million Series A funding round led by Tola Capital. “The potential for this technology to improve how development teams build secure software is enormous.”

Testing 172

Testing Applications .Net Open Source 172

DevOps.com

APRIL 14, 2023

The emergence of privately held […] The post How Application Developer Turnover is Shaping Security appeared first on DevOps.com. In the “new normal” of hybrid work, life moves fast and there’s no sign of slowing down. Since 2021, we’ve witnessed all-time record demand for software engineering developers.

Applications 110

Applications Development Software Engineering Engineering 110

AWS Machine Learning - AI

JANUARY 26, 2024

Generative artificial intelligence (AI) applications built around large language models (LLMs) have demonstrated the potential to create and accelerate economic value for businesses. Many customers are looking for guidance on how to manage security, privacy, and compliance as they develop generative AI applications.

Artificial Inteligence 116

Artificial Inteligence Generative AI Security Applications 116

Synopsys

OCTOBER 4, 2022

The Code Sight security plugin, available for IntelliJ, makes IDE-based AppSec testing attainable without breaking established development workflows. The post IDE-based application security for developers in IntelliJ appeared first on Application Security Blog.

Applications 119

Applications Development Testing Analysis 119

DevOps.com

NOVEMBER 7, 2022

found nearly three-quarters (73%) of organizations plan to increase investment in application security in 2023. The survey, conducted by Wakefield Research on behalf of Invicti, a provider of dynamic application security testing (DAST) tools, also found 97% of DevSecOps teams said they ignored a real vulnerability […].

Budget 104

Budget Applications Survey Research 104

Aqua Security

AUGUST 18, 2021

One of the main challenges developers face is how to manage security risks when deploying applications to Kubernetes clusters. A great way to address this early is by applying security hardening to the application manifests during the development process.

Applications 141

Applications Development How To 141

DevOps.com

APRIL 28, 2022

today made generally available an Application Security Monitoring (ASM) service that is based on the same agent software that many DevOps teams already use to monitor applications. The post Datadog Unfurls Application Security Service appeared first on DevOps.com. Datadog, Inc.

Applications 98

Applications DevOps Cloud Software 98

TechBeacon

MARCH 24, 2021

Application security is racing to keep pace with an application development environment fueled by DevOps. The result has been DevSecOps, where security processes are shifted further and further left, toward the beginning of the software development lifecycle.

Applications 138

Applications Trends DevOps Software Development 138

DevOps.com

FEBRUARY 1, 2024

OX Security updated its ASPM platform to enable DevSecOps teams to instantly identify applications with vulnerable code.

Applications 60

Applications Continuous Delivery Social Testing 60

DevOps.com

AUGUST 15, 2022

Dynatrace has extended the Application Security Module it provides for its observability platform to protect against vulnerabilities in runtime environments, including the Java Virtual Machine (JVM), Node.js In addition, Dynatrace has extended its support to applications built using the Go programming language.

Applications 98

Applications Virtualization Programming 98

Dzone - DevOps

NOVEMBER 17, 2023

In the ever-evolving technology landscape, businesses are increasingly recognizing the need to modernize their applications and make the leap to the cloud. Let's embark on a comprehensive exploration of the application modernization roadmap, delving into the intricacies of a swift and secure transition to the cloud.

Applications 109

Applications Cloud Scalability Agile 109

DevOps.com

JUNE 23, 2022

A report published today by automated application security testing platform ShiftLeft found only one in three applications has an attackable vulnerability. The post ShiftLeft Report Reveals State of Application Security appeared first on DevOps.com. Based on millions […].

Report 100

Report Applications Testing Organization 100

DevOps.com

JUNE 22, 2021

Along with cloud adoption has come the use of cloud-native tools built specifically for developing applications for this domain. However, cloud-native tools carry some nuanced security concerns, such as misconfigurations, known vulnerabilities and leaked secrets. As such, 83% of organizations recognize security […].

Report 145

Report Applications Cloud Tools 145

DevOps.com

JANUARY 23, 2024

Legit Security expanded the scope of its ASPM platform to make use of AI to discover vulnerable application secrets more accurately.

Applications 62

Applications Artificial Intelligence Artificial Inteligence Social 62

DevOps.com

JULY 29, 2022

At the AWS re:Inforce event this week, JFrog announced it integrated its JFrog Xray software composition analysis tool with AWS Security Hub, a cloud security posture management (CSPM) service that alerts IT teams whenever a security issue is detected.

AWS 124

AWS Applications Cloud Analysis 124

Lacework

MAY 1, 2023

Developers of cloud-native applications that run in Kubernetes are increasingly responsible for operational tasks beyond managing the application code itself. They define infrastructure as code (IaC), container images, pod configuration for Kubernetes deployment, Kubernetes RBAC, network services enabling pod communication, and more.

Applications 98

Applications Cloud Infrastructure Network 98

Prisma Clud

AUGUST 9, 2023

Application security refers to the practices and strategies that protect software applications from vulnerabilities, threats and unauthorized access so that organizations can ensure the confidentiality, integrity and availability of their application and its data.

Applications 52

Applications Software Review Cloud Systems Review 52