Topic: security

2023: The Year of Continuous Improvement

March 13, 2020. Friday the 13th. That’s when a large number of companies shut their offices to prevent the spread of a deadly virus – COVID-19. Many thought this would be a short, temporary thing.  They were wrong. The remainder of 2020 and 2021 were spent trying to figure out how to get an entire … continue reading

Report: over 30% of applications contain flaws at first scan

Veracode, provider of modern application security testing solutions, today released the results of the Veracode State of Software Security 2023 report, revealing that flaw build up overtime poses a real issue for many businesses. According to the report, nearly 32% of applications are found to have flaws at the first scan, jumping to almost 70% … continue reading

The biggest security challenges of 2023

Security will continue to cause headaches in 2023. Not only will companies have to continue dealing with the normal issues like supply chain security and preventing ransomware, which they’ll continue to deal with, but a number of companies see other issues on the horizon for 2023.  Supply chain attacks are ones in which the attackers … continue reading

Microsoft launches the stable release of Spring Cloud Azure 4.5.0 with passwordless support

Microsoft announced that Spring Cloud Azure version 4.5.0 has been released and is available from Maven Central. This is the first stable version to support passwordless connections to Azure Database for MySQL and Azure Database for PostgreSQL. Spring Cloud Azure is a framework that provides a way to build cloud-native applications using Azure services. It … continue reading

Snyk closes $196.5 million funding round

Developer security company Snyk today announced a $196.5 million Series G investment. The round was led by Qatar Investment Authority with participation from new investors Evolution Equity Partners, G Squared, and Irving Investors as well as existing investors boldstart ventures, Sands Capital, and Tiger Global.  According to the company, this comes after a year of … continue reading

Contrast Security announces free program for developers to learn security

Contrast Security launched its developer-focused education program Contrast Security Learning Hub and the Contrast Community forum to broaden access to secure coding practices.  The learning hub is a free program that provides interactive lessons on vulnerabilities across different languages and ecosystems. The program covers existing OWASP topics and JavaScript, Java, .NET, and Node.js programming languages. … continue reading

The future of developer enablement in software security

How developer-friendly is your organization’s security program? The answer is as important as ever in today’s digital economy. High-performing organizations empower developers with tools, training and resources to do high-quality work, with security top of mind. This results in the ability to build secure applications quickly that consistently meet expectations and mitigate risk. As we … continue reading

DevOps in 2022: Success and struggles

Security and value emerged as two important aspects of DevOps as 2022 unfolded. Yet, with as much success as organizations have achieved implementing their own DevOps strategies, many others struggled to make it work for them. Part of the struggle is an outgrowth of the “shift left” strategy advocated in the DevOps space, leaving developers … continue reading

1Password introduces new tools to secure development life cycle

1Password, the human-centric security and privacy company, today announced a solution intended to help companies improve the way that they manage and secure infrastructure secrets throughout the development lifecycle. According to 1Password, the new features, including the CI/CD integrations and 1Password Shell Plugins, offer developers the opportunity to secure their code by managing keys, credentials, … continue reading

GitLab Dedicated serves as single-tenant SaaS solution

GitLab announced limited availability of GitLab Dedicated, a platform for securely and privately hosting and managing GitLab instances, which makes the company’s DevSecOps platform available as a single-tenant SaaS solution.  It provides advanced features such as automated backups, high availability, and automation of operations. It also offers a managed environment for hosting and managing Kubernetes … continue reading

Code Intelligence introduces new command line tool for Java

The automated testing company, Code Intelligence, today announced that its open-source Command-Line Interface tool, CI Fuzz CLI, now enables Java developers to include fuzz testing in their current JUnit setup. With this, Java developers can locate functional bugs as well as security vulnerabilities at scale. According to the company, CI Fuzz CLI leverages genetic and … continue reading

Snyk announces updates to its Developer Security Platform

Snyk announced many innovations that extend the scope of the company’s Developer Security Platform during its SnykLaunch Fall 2022 event. This includes the general availability of Snyk Cloud, which offers tools to help fix software vulnerabilities such as a vulnerability scanner and a patch management system that was launched in July 2022 with limited availability.  … continue reading

1 3 4 5 6 7 69 Protection Status