AppSec Blog

Keep up with the latest news on cybersecurity, technical trends, and programming best practices.

Category: Risk Management

Recent Posts

Vulnerability Scanning vs Penetration Testing: Key Differences

When it comes to cybersecurity, there are two critical processes to help ensure your system is well-protected from malicious actors: vulnerability scanning and penetration testing. While both concepts aim to secure a particular aspect of the network or softwa...

Scanning vs. penetration testing blog graphic

App Security Is Reputation Security

According to a report by IBM, the average data breach cost is a staggering $4.88 million US dollars. As a result, more than 50% of companies have increased their app security investments, realizing the urgent need to minimize the risk of a potential breach. F...

DevSecOps Industry AppSec Risk Management

7 Common App Security Misconfigurations

Everyone makes mistakes at work. That’s human nature. People get distracted and forget things. Most of the time, it’s no big deal. For one Pentagon staffer, however, a simple oversight led to a data leak that exposed U.S. military emails to the internet. This...

DevSecOps Industry AppSec Risk Management

The Importance of Automated Code Review for App Security

With cyber threats evolving alarmingly, safeguarding your applications against vulnerabilities has never been more critical. Cybercrime is currently projected to cost approximately $10.5 globally starting in 2025. Using tools such as automated code review wil...

DevSecOps Industry AppSec Risk Management Software Testing

Importance of automated code review blog graphic

Common Software Vulnerabilities You Need to Protect Against

A solid understanding of the many types of software vulnerabilities is essential for improving your team’s ability to anticipate potential issues and guard against them. While there are certainly more than we’ve been able to list today, we’ve collected some o...

DevSecOps Industry AppSec Risk Management

Kiuwan 101: An Introduction to Application Security

Before jumping on the DevOps security solutions bandwagon, businesses need a Kiuwan 101 introduction to understand which challenges Kiuwan solves and how it makes application security testing a breeze. Keep reading to find out.

DevSecOps Kiuwan Risk Management

Introduction to Application security graphic

SAST vs. SCA: What’s the Difference?

Many different types of security tests are available to developer teams. However, some can only work in specific environments, and others might only work once the application runs. That’s precisely why SAST and SCA are so important for protecting your applica...

Risk Management Industry AppSec Software Testing

Proactive choosing of code scanning tools graphic

The Cost of Poor Source Code Quality

To boost your bottom line, you must produce top-notch code and identify and fix all instances of low-quality code. Low-quality code refers to poorly written code containing bugs and readability issues, among other problems. Poor code quality ca...

DevSecOps Industry AppSec Programming Language Risk Management

The Benefit of Using SAST Tools During Code Review

With malicious actors getting smarter than ever, developers must stay one step ahead when protecting their applications from security threats. However, it can be challenging to rely solely on humans to detect problematic areas during the code review process, ...

Risk Management Software Testing

Scared of a Data Breach? You Should Be

Data breaches are not only a massive headache for companies to deal with, but they can also have severe legal and financial implications. Software developers and companies have become more wary of data breaches in recent years. Although cybersecurity awarenes...

Risk Management Industry AppSec

Coding With AI? You Need a Security Partner Like Kiuwan

Great code isn’t easy to write. Despite the many blog posts that promise people can learn to code in a few weeks with the latest boot camp, most developers take years to hone their craft. Computers speak in absolutes — 1s and 0s. Humans speak in messy, imprec...

Risk Management Kiuwan Trends

Automated Threats: What App Developers Need to Know

Did you know that 2,200 cyber attacks happen every single day? With that sort of relentless onslaught, it might make you wonder who has that much time on their hands. But, the reality we know all too well is that while human attackers may be orchestratin...

DevSecOps Industry AppSec Risk Management