Dror Davidoff, co-founder and CEO of Aqua Security Aqua Security enables enterprises to secure their container-based and cloud-native applications from development to production, accelerating container adoption and bridging the gap between DevOps and IT security. Images serve as a container’s foundation, and developers can easily pull them from a centralized registry to run containers in … continue reading
As teams are pressured to release software more rapidly, more and more aspects of software development are being forced to “shift left,” moving up earlier in the development lifecycle. Because of the speed in which code is updated and delivered, security can no longer be thought of as an afterthought, said Rani Osnat, VP of … continue reading
WhiteSource has announced the launch of its software composition analysis tool, Effective Usage Analysis. The solution provides details on how software components are being used and highlights their impact on the application’s security. According to WhiteSource, the tool will reduce open-source vulnerability alerts by 70 percent. “Our Effective Usage Analysis technology allows security and … continue reading
The idea that developers don’t care about application security is a myth. A recently released report found that not only do developers take application security seriously, they take the time to find and fix vulnerabilities in their applications. “Developers want to create great code, and to them that also means code that won’t get their … continue reading
The world of software development involves so much more than writing code these days. Developers need to understand artificial intelligence, the cloud, new methodologies, and the expanding infrastructure required for the Internet of Things. Here are some companies our editors are watching to lead the way. tCell WHAT THEY DO: Application security WHY WE’RE WATCHING: … continue reading
Building end-to-end security into the software development process from the requirements phase through code delivery to production, is easier said than done. Often companies only run a few security tests and activities. That’s no longer good enough. In today’s environment it’s necessary to use multiple techniques to scour the entire software development lifecycle (SDLC) from … continue reading
Code Dx, Inc., provider of an award-winning application security solution that automates and accelerates the discovery, prioritization, and management of software vulnerabilities, today announced version 2.6 of its flagship Application Software Vulnerability Correlation and Management solution, Code Dx Enterprise. It now provides expanded vulnerability mapping onto compliance regulations, integration with mobile application security testing tools … continue reading
NVIDIA gave artificial intelligence researchers a big surprise over the weekend when it chose to unveil the NVIDIA Tesla V100 at the computer vision event, CVPR, in Honolulu. Jensen Huang, CEO of NVIDIA, presented the new solution to 15 attending research institutions in the hopes they will create great AI solutions. The NVIDIA Tesla V100 … continue reading
Does the DevSecOps approach make a difference when it comes to improving application security? According to this year’s 12th annual WhiteHat Security “Application Security Statistics Report,” it certainly does. This year’s WhiteHat report includes a case study that details a large health organization’s successful implementation of a DevSecOps approach. According to the study, critical vulnerabilities … continue reading
The Open Web Application Security Project (OWASP) released its Top 10 2017 project for public comment. This is the 14th year OWASP is raising awareness of security risks with its list, and it contains two major vulnerability updates, example attack scenarios, and a list of free and open resources for security-conscious developers. When Jeff Williams, OWASP … continue reading
As new pieces of software are being written every day, the threat of malicious hacking continues to grow. According to a new report, there will be about 111 billion lines of new software code created this year, and with them will come billions of software vulnerabilities. “Applications have become inviting targets for malicious actors, but … continue reading
Despite the importance of software security and the advancements made to protect applications, developers are still having a hard time developing secure solutions. A new study from Veracode shows while developers’ top concerns are cyberattacks and data breaches, security testing imposes a risk to their development and deadlines. “Development teams face an onslaught of challenges … continue reading
