Enterprises are realizing they need to adjust their security initiatives, and as result, software security is finally becoming mainstream. But with the rise of new trends like the Internet of Things and containerization, it’s up to security teams to teach developers how to secure their code. Cigital addresses these trends in BSIMM7, the latest version … continue reading
In an effort to make security more of a priority in an agile development environment, software security provider Cigital announced it is releasing an Agile Security Manifesto. The security manifesto builds on the original Agile Manifesto for software development, but adds four principles designed to promote security. According to the company, integrating security into an … continue reading
With 29x more data than its first model, Cigital has released its most recent findings of its Building Security in Maturity Model (BSIMM), declaring that software security is lagging. Cigital is an application security firm that studies industries to see what they are doing for their organizations’ software security. Today, the firm announced that it … continue reading
After reporting out this month’s feature on software security, it strikes us that there appear to be parallels between companies selling security solutions and those selling pharmaceuticals. Those who take to conspiracy theories have argued for years that the pharmaceutical companies have no incentive to eliminate, say, cancer, because they would lose the massive profits … continue reading
In its 2015 report, the Open Web Application Security Project (OWASP) identified SQL injection and cross-site scripting among its Top 10 software vulnerabilities. Again. If it feels as if you’ve been reading this same story for the last decade, it’s because you have. So why is it that we can build intelligent robots, fling unmanned … continue reading