Secure software development education report from the Linux Foundation
Wednesday, August 7, 2024 by Richard Harris
Linux Foundation Research and the Open Source Security Foundation (OpenSSF) are pleased to release a new report titled "Secure Software Development Education 2024 Survey: Understanding Current Needs." Based on a survey of nearly 400 software development professionals, the analysis explores the current state of secure software development. It underscores&n...
Sonatype expands firewall to stop dev vulnerabilities
Friday, March 9, 2018 by Austin Harris
Sonatype has announced that the Nexus Firewall is now available to support the more than 10 million developers currently using the open source version of Nexus Repository. Previously only available to commercial users of Nexus Repository Pro, the newest version of Nexus Firewall gives all Nexus Repo users the ability to automatically stop vulnerable open source componen...
The software fail watch report
Wednesday, January 31, 2018 by Richard Harris
Tricentis has announced the release of their fifth annual Software Fail Watch report, which is a detailed analysis of the software failures, defects, and vulnerabilities covered by news organizations from around the globe. Tricentis analyzed each failure to reveal industry-specific trends as well as impacts to stock prices, market share, and customer trust and loyalty. ...
Flexera issues warning about Cyberattacks
Tuesday, October 24, 2017 by Austin Harris
As 143 million Equifax consumers continue to pick up the pieces from stolen Social Security numbers, birth dates, drivers’ licenses, addresses and credit card numbers, Flexera has another warning - expect a long tail of incidents and breaches in the months and years to come.Flexera surveyed over 400 software suppliers, Internet of Things (IoT) manufacturers and in-house...
DevSecOps will help security and developers play nice
Thursday, June 15, 2017 by Richard Harris
Veracode, a security software company acquired by CA Technologies, has announced the results of a study examining the relationships between application developers and security teams.The study, conducted in conjunction with Enterprise Strategy Group (ESG), shows that despite the pervasive belief that security and development teams have conflicting priorities, initiatives...
Cloud Security Alliance Issues Mobile Application Security Testing Report
Monday, August 1, 2016 by Stuart Parkerson
The Cloud Security Alliance has released a new report surrounding its Mobile Application Security Testing Initiative. The purpose of the report is to provide the Alliance’s insight into building out a roadmap for establishing a more secure cloud ecosystem to protect mobile applications.The Alliance’s Mobile Application Security Testing (MAST) Initiative offers...
ERPScan Releases New SaaS Security Platform for SAP Environments
Tuesday, July 26, 2016 by Stuart Parkerson
ERPScan has released a new SaaS solution to protect SAP environments from customization issues. The new solution combines the ERPScan Security Monitoring Suite engine and new technologies developed ERPScan. ERPScan's SAP Code Security SaaS provides the ability to upload a program code from their SAP Systems into ERPScan's cloud platform. Users receive a list of ide...
HP Releases LeanFT Application Continuous Testing and Continuous Delivery Platform
Monday, June 8, 2015 by Stuart Parkerson
HP has released HP LeanFT, a new test automation solution which provides access for software developers and testers to continuous testing and continuous delivery methodologies to build, test, and deliver applications. HP LeanFT is built specifically for continuous testing and continuous delivery, and fits into existing ecosystems (such as Microsoft TFS, GIT, and Su...
HP Launches Cloud Managed Application Self Protection Service
Friday, September 12, 2014 by Stuart Parkerson
HP has introduced HP Application Defender, a cloud-managed application self-protection service that provides immediate visibility and actively defends production applications against attacks.As HP said in the recent announcement, “As the number and complexity of enterprise applications grows, the attack surface for exploits increases exponentially, leaving enterpri...
BlackBerry and Mozilla Developing Peach Security Tool
Friday, August 2, 2013 by Richard Harris
Security experts at BlackBerry and Mozilla have teamed up to further develop a testing tool aimed at discovering and fixing software vulnerabilities in Web browsers.The security testing tool "Peach" was created by Michael Eddington of Deja vu Security in 2004 and has been under active development for almost 10 years, but it will now have the strength of Blackberry and M...