Amidst growing cybersecurity threats, the security of the software we write has become increasingly important. To help prevent cyber attacks, DevSecOps has become standard practice among many development teams. One of the most powerful tools in DevSecOps is ...
Web application security requires a multi-layered approach that considers and reduces all attack surfaces. Given the complexity of modern applications, overlooking even a small detail can leave an application vulnerable. Take the example of the Microsoft R...
Open-source software dramatically simplifies and speeds up the development process. However, it also carries significant risks in the form of vulnerabilities. The public nature of open-source code means that databases such as Open Source Vulnerabilities ...
Most developers don’t build applications from scratch. Instead, they use a mix of original development, code reused from other programs, and some third-party components. What often happens is that developers get deep into the weeds of making sure it all works...
DevSecOps is quickly becoming one of those trendy terms that everyone tries to use on social media. If you can somehow work #devsecops into a post, you’re using today’s forward-looking language. The problem is that many articles and blogs miss some of the mos...
Understanding the DevOps Approach to Code Security DevOps generally means integrating software development (dev) and information technology operations (ops) to speed the lifecycle, deliver better features, updates and fixes, and more. What’s sometimes missing...
What DevSecOps Teams Can Learn from COVID-19 Over the last few months, the whole world has fundamentally changed due to the emergence of a novel coronavirus, COVID-19. The highly infectious nature of the virus, its devastating impact on vulnerable individuals...
Internet-of-things (IoT) devices are used in almost all industries for various use cases. Sensing what’s happening in the physical world and transmitting data wirelessly allows developers to collect, process, and analyze data for healthcare, manufacturing, ho...
People want choices in how they access online services. They expect to be able to log into a website if they’re on their computer or download an app to their smartphone for convenience. Businesses today are responding to this demand for multichannel opt...
As software applications are increasingly integrated into more aspects of society, cyber threats continue to increase in complexity and frequency. The rapid digital shift brought about by the pandemic allowed people more convenience and flexibility by normali...
Despite widespread awareness of cybersecurity threats, the most common password in 2024 is still “123456.” This simple fact underscores the ongoing challenges in enforcing strong password practices. This is a serious problem, given that almost hal...
While we’ve discussed OWASP (Open Web Application Security Project), it’s importance to the security of applications and development and the standards it sets, there are other aspects that deserve our attention. One of the primary elements of OWASP that deman...
