AppSec Blog

Keep up with the latest news on cybersecurity, technical trends, and programming best practices.

Category: Risk Management

Recent Posts

Mitigating Development Risk with Software Composition Analysis

There are ways for developers to deal with potential threats and assure software security. Software Composition Analysis (SCA) comes in handy for checking vulnerabilities and licensing issues line-by-line.

Kiuwan Risk Management

How to Safely Leverage Open Source in Your Codebase

All major innovations in recent years, including cloud computing, big data, and artificial intelligence, have been built in open source ecosystems. According Gartner, most organizations use some form of open-source assets within their critical applications. ...

FTC Warning: How to Remediate Log4j Risk

Stick with us to find out everything you need to know about the Log4j vulnerability and how to keep your business and its applications safe from the potential exploit.

DevSecOps Industry AppSec Risk Management

DevSecOps: From Optional To Essential

Between the rise of cloud-based platforms and the value of big data, the increasing practical – and often legal – requirements of secure application development have moved security from being a mere afterthought to the heart of DevSecOps.

DevSecOps Risk Management

New REST API Endpoint for Log4j Vulnerability

You asked… we delivered! We are adding a New REST API endpoint, designed to enable teams to quickly use REST API query to identify vulnerable components across applications, specifically targeted at the Log4j vulnerability. In response to the critical challen...

Risk Management

What the Log4J Vulnerability Means for Your Business

What the Log4j Vulnerability Means for Businesses Most businesses using Apache’s open-source Log4j logging framework should already know about the vulnerability in the system. Known as Log4Shell or CVE-2021-44228, this vulnerability requires urgent action. Le...

Industry AppSec Risk Management

Zero Trust: Everything You Need to Know

Zero Trust practices help organizations control and monitor who has access to their assets through the use of “least privilege access” principles.

Industry AppSec Risk Management

5 Steps to Enhance Developer Security

Developer play a crucial role in enhancing security and ensuring high performance throughout the development pipeline. Baking security into the code is more effective and efficient than testing a release candidate after the fact, only to be forced into correc...

DevSecOps Risk Management

Application Security Strategies to Combat Ransomware

Ransomware changes the landscape of security from reactive to proactive – meaning that the focus of application security is changing from pre-deployment vulnerability testing to ensuring that developers and security teams perform security checks during ...

Industry AppSec Risk Management

Cyber Threats in 2021: An Overview

There’s a surprising degree of consensus as to the cyberthreats that pose the biggest and most persistent dangers.

Risk Management Trends

Proactive Security Scanning and Testing Pre-Empts Attacks

Best security practices dictates that avoiding trouble is faster, cheaper and easier than fixing trouble after it manifests.

Risk Management Software Testing

Analyzing the Colonial Pipeline Ransomware Attack

On May 7, Colonial Pipeline had to shut down its pipelines due to a ransomware attack. Colonial is a major oil pipeline operator in the southern and eastern United States. Its pipelines extend from Texas to New Jersey and reach Louisiana, Mississippi, Alabama...

DevSecOps Industry AppSec Risk Management

« Previous Next »

See Kiuwan in Action

App and software breaches can have lasting consequences. They also aren’t going anywhere. Finding vulnerabilities in your app and code early is critical. Maintaining strong security practices during and after development is essential to protecting your business.

Request a Demo