Explore Sembi IQ - The AI engine powering the next generation of intelligent quality

AppSec Blog

Keep up with the latest news on cybersecurity, technical trends, and programming best practices.

Category: Risk Management

Recent Posts

How SAST and Application Hardening Work Together to Strengthen Software Security

Security teams often treat Static Application Security Testing (SAST) and application hardening as separate disciplines. One scans code for vulnerabilities before release; the other protects the running application from tampering and reverse engineering after...

Risk Management

How-SAST-and-Application-Hardening-Work-Together-to-Strengthen-Software-Security-blog-image

Detecting React2Shell with Kiuwan: A Practical Guide for AppSec Engineers

A critical deserialization flaw in React Server Components demands immediate attention—here’s how to find it in your codebase. The application security community is responding to React2Shell (CVE-2025-55182), a maximum-severity vulnerability affecting R...

Risk Management Kiuwan

Detecting-React2Shell-with-Kiuwan-A-Practical-Guide-for-AppSec-Engineers-blog-image

Buffer Overflow Attacks: Causes, Outcomes, and Prevention

A buffer overflow attack is a common vulnerability in software security. It happens when a program writes more data into a memory buffer than it can hold, causing data corruption, crashes, or even remote code execution. Buffer overflows have been known for d...

DevSecOps Risk Management

buffer-overflow-attacks-causes-outcomes-blog-image

Defending Your Software Supply Chain: How to Use Kiuwan Against Shai-Hulud, Log4J, and Polyfill Attacks

A practical guide to detecting and responding to open source supply chain compromises using SAST, SCA, and proactive security monitoring. The threat landscape: When your dependencies become attack vectors Software supply chain attacks have e...

Risk Management

Defending-Your-Software-Supply-Chain-How-to-Use-Kiuwan-Against-Shai-Hulud-Log4J,-and-Polyfill-Attacks-blog-image

What Is Cross-Site Scripting (XSS) and Why It Matters?

Cross-site scripting (XSS) is a web security vulnerability in which threat actors inject malicious scripts into web pages. Although it has been known for decades, it still impacts modern software, including SaaS dashboards, fintech platforms, healthcare apps,...

DevSecOps Risk Management

12 Ways AI Is Improving Cloud Security

As both AI and cyberattacks grow in sophistication, traditional security methods designed for static, on-premises environments no longer cut it. AI in cloud security helps teams spot threats in real time, anticipate risks before they escalate, and respo...

Risk Management Trends

12-ways-ai-is-improving-cloud-security-blog-image

AI in SAST: How Artificial Intelligence Enhances Application Security

Code security has always been a major concern for development teams. However, tools like static application security testing (SAST) only became available relatively recently. These tools scan a software product’s source code for security vulnerabilities...

DevSecOps Risk Management Trends

The Secret Sprawl Crisis: Why AI Development Demands a New Security Playbook

We’re witnessing a fundamental shift in how secrets leak into codebases, and traditional scanning approaches are falling dangerously behind. The numbers tell a stark story. Recent reports suggest that teams using AI code-generation tools may face up to ...

DevSecOps Risk Management

AI and Cybersecurity: Threats, Defenses, and What to Expect Next

Artificial intelligence (AI) is reshaping cybersecurity. It’s being used to defend networks and to launch more sophisticated attacks. AI and cybersecurity are now closely connected, for better and worse. As threats become more advanced and harder to detect, i...

DevSecOps Kiuwan Risk Management Trends

How to Defend Yourself Against the Largest JavaScript Supply Chain Attack

A major security incident just exposed billions of downloads to malicious code injection, but there is a solution. The cybersecurity world is reeling from what experts are calling the largest supply chain attack in history. Hackers successfully infiltrated po...

Risk Management DevSecOps Trends

How-to-defend-yourself-against-the-largest-Javascript-supply-chain-attack-blog-image

AI code security: Risks, best practices, and tools

AI coding assistants can help you ship faster, but they can also ship vulnerabilities straight into production. Unfortunately, this increase in efficiency has been accompanied by greater security risks. Recent research indicates that approximately 25–30% of c...

DevSecOps Industry AppSec Risk Management

Choosing the Best SAST Tools for Your Team

Cyber threats targeting secure code and software applications are becoming increasingly complex and voluminous. To stay ahead, organizations must embed security earlier in the software development lifecycle, starting with Static Application Security Testing (...

DevSecOps Kiuwan Risk Management Software Testing

Secure Your Code,
Protect Your Business

Detect vulnerabilities early and strengthen your security. Take control now to safeguard your app. See Kiuwan in action!

Request a Trial

Empower Your DevSecOps With Kiuwan

Subscribe to our Newsletter!

Products

SAST SCA Add-Ons

Resources

Blog Webinars eBooks Product Documentation Videos Partner Program

About Us

About Kiuwan Success Stories Contact Us Support Legal Privacy Policy

AppSec Blog

Keep up with the latest news on cybersecurity, technical trends, and programming best practices.

Category: Risk Management

Recent Posts

How SAST and Application Hardening Work Together to Strengthen Software Security

Detecting React2Shell with Kiuwan: A Practical Guide for AppSec Engineers

Buffer Overflow Attacks: Causes, Outcomes, and Prevention

Defending Your Software Supply Chain: How to Use Kiuwan Against Shai-Hulud, Log4J, and Polyfill Attacks

What Is Cross-Site Scripting (XSS) and Why It Matters?

12 Ways AI Is Improving Cloud Security

AI in SAST: How Artificial Intelligence Enhances Application Security

The Secret Sprawl Crisis: Why AI Development Demands a New Security Playbook

AI and Cybersecurity: Threats, Defenses, and What to Expect Next

How to Defend Yourself Against the Largest JavaScript Supply Chain Attack

AI code security: Risks, best practices, and tools

Choosing the Best SAST Tools for Your Team

Secure Your Code,Protect Your Business

Empower Your DevSecOps With Kiuwan

Secure Your Code,
Protect Your Business