Even with a stronger focus on security this year, most software is still riddled with security vulnerabilities. According to Veracode’s State of Software Security (SOSS) report, 87.5 percent of Java applications, 92 percent of C++ applications, and 85.7 percent of .NET application contain at least one vulnerability. In addition, over 13 percent of applications contain … continue reading
Agile has been around for nearly two decades now, and just like most things in life that we come to accept, it is starting to be taken for granted. It seems that somewhere along the way, the Agile approach has lost its mojo. “A lot of teams have been going through the motions and keeping … continue reading
CA Technologies announced its acquisition of software composition analysis specialists SourceClear early this week with aims to incorporate SourceClear’s SaaS-based SCA tool and proprietary vulnerability database with their Veracode cloud platform. “We are excited about what this acquisition means for our customers in terms of increased support for SCA in DevSecOps environments and the ability … continue reading
A DevSecOps strategy won’t work if developers haven’t bought into the movement. CA Veracode held a virtual summit on Assembling the Pieces of the DevSecOps Puzzle yesterday to talk about the importance of developer security training in a DevOps environment. According to Sonali Shah, VP of product management and marketing for CA Veracode, while the … continue reading
Software is the lifeblood of most businesses today. So, what happens if that software is unreliable or insecure? It seems like a no-brainer that the software being pushed out should be protected. But, as software is being developed and deployed at a rapid pace, an important aspect of the life cycle gets lost in the … continue reading
Java developers should be more aware of the open source software components they put in their applications if they want to avoid a security breach. A new report release by Veracode, a CA Technologies company, revealed 88% of Java apps include at least one vulnerable component, and about 53.3% of Java apps rely on a … continue reading
Microsoft has acquired the virtual reality company AltspaceVR. AltspaceVR provides a social community in VR, which Microsoft hopes to expand on. AltspaceVR had originally closed down in July, but connected with Alex Kipman at Microsoft “and found a natural overlap between his goals for mixed reality and their hopes for the future of AltspaceVR,” the … continue reading
Today’s formal education shows significant security skills gaps in the IT and developer professional community. According to new research from Veracode and DevOps.com, 76 percent of developers indicated security and secure development education is needed for today’s world of coding, but it’s missing from current curriculums. By not including security as part of bachelor’s or … continue reading
At the Open Networking Summit, Google announced Espresso, the latest offering in its software defined networking strategy. It is designed to make the Google cloud faster, more available and cost effective. “Espresso has been in production for over two years and routes 20 percent of our total traffic to the internet—and growing. It’s changing the … continue reading
CA Technologies announced that it has signed a definitive agreement to acquire Veracode for approximately US$614 million in cash, in order to increase speed and security from app development to production. This agreement follows CA’s acquisition of BlazeMeter in October 2016, as well as its January acquisition of Automic. BlazeMeter was added to build out … continue reading
Veracode wants to help developers spot security defects in seconds, which led it to announce the availability of Greenlight, a product that lets developers easily scan their code while they work. Greenlight is an embedded security solution that lets developers identify and fix security vulnerabilities, and to rescan the code to make sure it has … continue reading
Despite the importance of software security and the advancements made to protect applications, developers are still having a hard time developing secure solutions. A new study from Veracode shows while developers’ top concerns are cyberattacks and data breaches, security testing imposes a risk to their development and deadlines. “Development teams face an onslaught of challenges … continue reading