Topic: software security

Equifax agrees to pay at least $575 million in data breach settlement

Equifax will finally have to pay for its 2017 data breach, which compromised up to 147 million users and exposed sensitive information like credit card numbers, social security numbers, names, birthdays and addresses. The Federal Trade Commission (FTC) has revealed Equifax has agreed to pay at least $575 million as part of a global settlement … continue reading

Microsoft turns to Rust for safer code

Microsoft is starting to explore new programming languages to protect against security vulnerabilities. The company revealed it is turning to the systems programming language Rust to help developers build more reliable and efficient software.  Microsoft has long turned to languages like C++ and C# in their security efforts. C# has helped protect against memory corruption … continue reading

A developer’s guide to key storage providers

As a developer, you specialize in code – not security.  However, as DevOps continues to blend roles and responsibilities, the typical software developer has become responsible for more and more operational aspects like security. A core component of application and IoT security is code signing. Let’s start with a basic definition. Code signing is a … continue reading

Report: Not all open-source software is created equal

While open-source software is an integral part of software development today, security continues to be an issue. A recently released report revealed a 71 percent increase in open-source security related breaches over the last five years. In addition, 25 percent of organizations reported a confirmed or suspected open-source software related breach.  RELATED CONTENT: Open source … continue reading

GitLab turns its focus to DevSecOps

GitLab is taking the next steps in its DevOps initiative with the announcement that it is integrating security into its single application. The company is also releasing auto remediation, security dashboards and plans to release security approvals in an upcoming update. “The advantages of a single application are numerous: A single sign-on eliminates the need … continue reading

Top roadblocks to securing web applications

In recent weeks, data breaches seem to have suddenly become more widespread and far reaching across the globe. In Australia, the Office of the Australian Information Commissioner (OAIC) revealed more than 10 million individuals had their information compromised in a single incident. In Singapore, thousands of Red Cross blood donors had their personal information leaked. … continue reading

RSA 2019: Synopsys’ Polaris Software Integrity Platform, Sysdig’s Cloud-Native Intelligence Platform, WhiteHat security partnership program and more

RSA Conference is taking place this week in San Francisco with a number of companies and thought leaders coming together to tackle the latest and greatest cybersecurity threats. “Some say it’s impossible to stay ahead of cybersecurity threats. We disagree. We’ll always be here as your go-to resource for exchanging ideas, learning the latest trends … continue reading

Microsoft tackles enterprise cybersecurity with Azure Sentinel and Threat Experts

Microsoft wants to improve security teams’ ability to detect and respond to threats at scale. The company announced Microsoft Azure Sentinel and Microsoft Threat Experts to reduce noise, false alarms, and time-consuming tasks. “Cybersecurity is about people. The frontline defenders who stand between the promise of digital transformation and the daily reality of cyber-attacks need … continue reading

Microsoft to democratize homomorphic encryption with SEAL for .NET

Microsoft is introducing its open-source homomorphic encryption solution to the .NET developer ecosystem. Microsoft SEAL for .NET is a wrapper library designed to enable developers to interact with Microsoft SEAL for .NET apps. Microsoft SEAL, or Simple Encryption Arithmetic Library, was first open-sourced in December. “As we increasingly move our data to the cloud, there … continue reading

Clever-Commit coding assistant uses AI to protect against bugs

A new coding assistant is leveraging artificial intelligence to learn from previous bugs and bug fixes, and identify when new bugs are introduced. Clever-Commit, originally known as Commit-Assistant, is a new AI technology designed for programmers by Ubisoft La Forge. According to Ubisoft, the AI-based coding system uses the latest machine learning and big data … continue reading

Guest View: The modern security hero is a developer

As software becomes more sophisticated, the need for a security culture in organizations becomes more urgent. However, organizations’ security teams rarely have the necessary resources and expertise to support developers. In fact, the BSIMM 2016 survey indicates that for every 245 software engineers, there is 1 security expert. Not only do organizations lack the resources … continue reading

Security continues to be a black cloud for businesses

The year would not be complete without a major security breach, and although there are a number to choose from throughout any given year, Marriott ended 2018 with a doozy. The company revealed at the end of November that there had been unauthorized access to its Starwood reservation database for more than four years. This … continue reading

1 2 3 16
HTML Snippets Powered By : XYZScripts.com

Get access to this and other exclusive articles for FREE!

There's no charge and it only takes a few seconds.

Sign up now!