Tag: SDLC
Mitigating Third-Party Risk Requires a Collaborative, Thorough Approach
COMMENTARYMitigating third-party risk may seem daunting when considering the slew of incoming regulations coupled with the increasingly advanced tactics of cybercriminals. However, most organizations...
Breaking News
Patch Now: Critical TeamCity Bug Allows for Server Takeovers
JetBrains has patched a critical security vulnerability in its TeamCity On-Premises server that can allow unauthenticated remote attackers to gain control over an affected...
JFrog and AWS Accelerate Secure Machine Learning Development
New JFrog Artifactory and Amazon SageMaker integration empowers developers and data scientists to build, train, and deploy ML Models in the cloud
SUNNYVALE, Calif.–(BUSINESS WIRE)–JFrog...
Microsoft: Multiple Perforce Server Flaws Allow for Network Takeover
Microsoft has identified four vulnerabilities in the Perforce source-code management platform, the most critical of which gives attackers access to a highly privileged Windows...
Global TeamCity Exploitation Opens Door to SolarWinds-Style Nightmare
APT29, the notorious Russian advanced persistent threat behind the 2020 SolarWinds hack, is actively exploiting a critical security vulnerability in JetBrains TeamCity that could...
CISOs See Software Supply Chain Security As Bigger Blind Spot Than GenAI: Cycode
PRESS RELEASESAN FRANCISCO, Dec. 06, 2023 (GLOBE NEWSWIRE) -- Cycode, the leader in Application Security Posture Management (ASPM), today announced the inaugural State of ASPM 2024...
Zatik Security Gains Momentum, Announces Co-Founder, CTO, Partner Network
PRESS RELEASESeattle, Wash., December 4, 2023 – Just two months after Zatik Security opened its doors, it’s announcing its third founding partner and CTO, as...
Enterprise Generative AI Enters Its Citizen Development Era
There are times where we get a clear before-and-after moment that demands a reevaluation of our most basic assumptions. This month, OpenAI announced custom...
Cycode Introduces Complete Approach to Application Security Posture Management (ASPM)
PRESS RELEASESAN FRANCISCO, Nov. 14, 2023 -- Cycode, the leader in Application Security Posture Management (ASPM), today unveiled ConnectorX, an open, click and connect ASPM connector...
Myrror Security Emerges From Stealth With $6M Seed Round to Prevent Attacks on the Software Development Process
TEL AVIV, Israel, Nov. 7, 2023 /PRNewswire/ -- Myrror Security, a pioneer in application security for organizations using open-source packages, launched today with $6M in seed funding from Blumberg Capital and Entrée...
ASPM Is Good, But It’s Not a Cure-All for App Security
Application security posture management (ASPM) is a method of managing and improving the security of software applications. It encompasses the processes, tools, and practices...
MOVEit Breach Shows Us SQL Injections Are Still Our Achilles’ Heel
In late 1998, when I was just beginning my career in technology, I read in the venerable Phrack magazine how poor input sanitization allowed...
OX Security Receives Strategic Investment From IBM Ventures
TEL AVIV, ISRAEL August 15, 2023 — OX Security, a supply chain security solution and founding member of the Open Software Supply Chain Attack Reference...