AppSec Blog

Keep up with the latest news on cybersecurity, technical trends, and programming best practices.

Category: Risk Management

Recent Posts

Cyber Threats in 2021: An Overview

There’s a surprising degree of consensus as to the cyberthreats that pose the biggest and most persistent dangers.

Risk Management Trends

Proactive Security Scanning and Testing Pre-Empts Attacks

Best security practices dictates that avoiding trouble is faster, cheaper and easier than fixing trouble after it manifests.

Risk Management Software Testing

Proactive choosing of code scanning tools graphic

Analyzing the Colonial Pipeline Ransomware Attack

On May 7, Colonial Pipeline had to shut down its pipelines due to a ransomware attack. Colonial is a major oil pipeline operator in the southern and eastern United States. Its pipelines extend from Texas to New Jersey and reach Louisiana, Mississippi, Alabama...

DevSecOps Industry AppSec Risk Management

Static Analysis in Automated Software Quality Tests

Software quality management solutions function with automated tests that use static analysis processes to generate software quality metrics. With the ability to parse code in almost every commonly used programming language, stati...

Risk Management Software Testing

Don’t Get Hacked: 5 Ways to Protect Your Company’s Assets

Malware has become a constant reality for most businesses. Ransomware alone cost around $5 billion in 2017–and those numbers are predicted to continue to rise in the coming years, potentially reaching as much as $11.5 billion by 2019. Prot...

DevSecOps Risk Management

Application Security: A Must-Have for Business Success

There is almost an endless list of reasons why application security is important to businesses. Those range from maintaining a positive brand image to preventing security breaches that impact the trust that your clients and shareholders have in your business....

DevSecOps Industry AppSec Risk Management

The Canary in the Coal Mine: Detecting Cyberattacks Early

Canary in a Coal Mine: Detecting Cyberattacks Early Many catastrophic events are obvious, with their effects immediately visible — but not all. Fire, flood, tornadoes and earthquakes are all examples of events that can cause a substantial impact to business o...

DevSecOps Industry AppSec Risk Management

How to Proactively Address Payment Card Security Threats

Payment card attacks are nothing new. Cybercriminals have been targeting payment cards for more than a decade. However, there is a disturbing trend of cybercriminals discovering and leveraging novel ways to steal payment cards credentials during online transa...

Risk Management

Securing Cloud Access in Applications

As applications become increasingly cloud-based – or even, cloud-native – more and more such code is sending data to and from cloud-based stores, both public and private. This makes the methods and controls that such applications use to access the cloud of pa...

Risk Management

Secure Remote Access: Keeping Employees and the Organization Safe

In this age of lockdowns, social distancing and working from home, organizations must think carefully about how to extend their networks and services across the internet and into employees’ and contractors’ homes. This makes remote access security management ...

DevSecOps Industry AppSec Risk Management

What Are Firmware Vulnerabilities?

Development tools are growing more advanced; large language models can now write code for us based on simple plain English requests. Unfortunately, malicious actors also have access to increasingly powerful tools. As a result, cybersecurity risk management ha...

DevSecOps Risk Management

8 Tips for Mobile App Security

Delivering a secure mobile app to users requires developers to prioritize security throughout the software’s development pipeline. An organization’s System Development Life Cycle (SDLC) should include easy-to-follow security instructions that consider t...

DevSecOps Industry AppSec Risk Management