AppSec Blog

Keep up with the latest news on cybersecurity, technical trends, and programming best practices.

Category: Risk Management

Recent Posts

What Are AppSec Tools?

With each year setting new records for security and data breaches, application security (AppSec) tools are more important than ever. Explore some of the different AppSec tools every developer team should have in their arsenal and how they can benefit you, you...

Risk Management

What Is SBOM?

A software bill of materials (SBOM) is a list of every open-source and third-party component present in a project’s code. They’re essential for keeping track of all your project’s components and being able to more accurately address issues as they arise. This...

Risk Management Industry AppSec

The Need to Defend Against Both Static and Dynamic Attacks

Every developer sets out to write bug-free code that runs as it should, meets client requirements, and doesn’t expose sensitive data. Unfortunately, time constraints, inexperience, and inattentiveness lead to releasing applications full of security vulnerabil...

DevSecOps Kiuwan Risk Management

The Need to Defend Against Both Static and Dynamic Attacks

The Best Application Security Tools

See the best application security tools to safeguard your software from vulnerabilities and cyber threats. Learn how Kiuwan can improve your security

Risk Management DevSecOps

Security strategies for ransomeware graphic

Achieving Speed and Security in Agile Development

Software development is often a game of speed. Unrealistic deadlines were one of the top work challenges developers cited in a recent Statista survey. With the tech industry moving a mile a minute, the pressure to perform can lead developers to cut corne...

DevSecOps Risk Management

What Is New in the OWASP Top 10 in 2024?

The need for application security has never been greater. In a world where technology is ubiquitous, and applications are key to day-to-day operations, organizations must protect their data against the threats of the ever-changing cybersecurity landscape. Tha...

Industry AppSec Risk Management

What’s the Purpose of a Secure Code Review?

Twitter recently became the victim of a data breach caused by incorrect settings around an application programming interface (API). Hackers stole the information of 5.4 million users and posted it to an online forum. Threat actors then began selling the infor...

DevSecOps Programming Language Risk Management

The Top 15 Open-Source Software Security Risks

We’ll walk you through some of the top open-source software security risks and discuss the tools and processes you can use to mitigate them.

Risk Management DevSecOps

Open source integration headache graphic

The ROI of Application Security: Defense Is a Business Advantage

Cybersecurity is evolving faster than ever, and the cost of a security incident continues to grow with it. IBM’s “Cost of a Data Breach Report 2023” showed that the financial impact of the average cybersecurity intrusion has risen to 4.45 mi...

DevSecOps Risk Management

What Is Vulnerability Remediation and Why Is It Essential to the SDLC?

As our use of technology grows and evolves, so do the threats presented by bad actors constantly looking for ways to exploit software vulnerabilities. Mitigating these risks during the software development lifecycle (SDLC) has become critical in helping devel...

DevSecOps Risk Management Software Testing

Do Your Apps Use Third-Party Components? Scan Your Code

Many software projects incorporate third-party components to add specific functionality. One of the biggest problems IT teams face is keeping up with what’s being used. Without a rigorous framework governing their use, applications can become a Wild West full...

DevSecOps Industry AppSec Risk Management

What Code Security Risks Exist Beyond OWASP Top 10?

The OWASP Top 10 is a great starting point for mitigating code security risks. However, businesses that want to be prepared for modern cyber threats must go beyond a checklist of typical threat vectors. Incorporating security at every touchpoint allows develo...

DevSecOps Industry AppSec Risk Management