Explore Sembi IQ - The AI engine powering the next generation of intelligent quality

AppSec Blog

Keep up with the latest news on cybersecurity, technical trends, and programming best practices.

Category: Risk Management

Recent Posts

How to Find CVE-2025-55182 (React2Shell) with Kiuwan

In late 2025, a critical remote code execution vulnerability—CVE-2025-55182, widely dubbed React2Shell—was disclosed in React Server Components (RSC) and ecosystems that bundle them (e.g., React 19.x and Next.js frameworks). This flaw allows unauthenticated a...

Risk Management

How-to-Find-CVE-2025-55182-(React2Shell)-with-Kiuwan-blog-image

SAST and Automation Tooling: The Smart Way for Lean Organizations to Scale Security

Every security leader understands the challenge: the ideal SecOps team with dedicated specialists, threat hunters, and reviewers often clashes with the reality of limited hiring, shifting priorities, and a growing skills gap. Industry analysts highlight...

Risk Management

SAST-and-Automation-Tooling-The-Smart-Way-for-Lean-Organizations-to-Scale-Security-blog-image

Application vulnerability: How to detect and fix security risks before deployment

Application vulnerabilities pose serious challenges for software teams. A single flaw can ripple through systems, undermining performance, security, and user trust. Modern applications rely on countless moving parts. Libraries, APIs, integrations, and updates...

Risk Management DevSecOps

Application-vulnerability-How-to-detect-and-fix-security-risks-before-deployment-blog-image

How SAST and Application Hardening Work Together to Strengthen Software Security

Security teams often treat Static Application Security Testing (SAST) and application hardening as separate disciplines. One scans code for vulnerabilities before release; the other protects the running application from tampering and reverse engineering after...

Risk Management

How-SAST-and-Application-Hardening-Work-Together-to-Strengthen-Software-Security-blog-image

Detecting React2Shell with Kiuwan: A Practical Guide for AppSec Engineers

A critical deserialization flaw in React Server Components demands immediate attention—here’s how to find it in your codebase. The application security community is responding to React2Shell (CVE-2025-55182), a maximum-severity vulnerability affecting R...

Risk Management Kiuwan

Detecting-React2Shell-with-Kiuwan-A-Practical-Guide-for-AppSec-Engineers-blog-image

Buffer Overflow Attacks: Causes, Outcomes, and Prevention

A buffer overflow attack is a common vulnerability in software security. It happens when a program writes more data into a memory buffer than it can hold, causing data corruption, crashes, or even remote code execution. Buffer overflows have been known for d...

DevSecOps Risk Management

buffer-overflow-attacks-causes-outcomes-blog-image

Defending Your Software Supply Chain: How to Use Kiuwan Against Shai-Hulud, Log4J, and Polyfill Attacks

A practical guide to detecting and responding to open source supply chain compromises using SAST, SCA, and proactive security monitoring. The threat landscape: When your dependencies become attack vectors Software supply chain attacks have e...

Risk Management

Defending-Your-Software-Supply-Chain-How-to-Use-Kiuwan-Against-Shai-Hulud-Log4J,-and-Polyfill-Attacks-blog-image

What Is Cross-Site Scripting (XSS) and Why It Matters?

Cross-site scripting (XSS) is a web security vulnerability in which threat actors inject malicious scripts into web pages. Although it has been known for decades, it still impacts modern software, including SaaS dashboards, fintech platforms, healthcare apps,...

DevSecOps Risk Management

12 Ways AI Is Improving Cloud Security

As both AI and cyberattacks grow in sophistication, traditional security methods designed for static, on-premises environments no longer cut it. AI in cloud security helps teams spot threats in real time, anticipate risks before they escalate, and respo...

Risk Management Trends

12-ways-ai-is-improving-cloud-security-blog-image

AI in SAST: How Artificial Intelligence Enhances Application Security

Code security has always been a major concern for development teams. However, tools like static application security testing (SAST) only became available relatively recently. These tools scan a software product’s source code for security vulnerabilities...

DevSecOps Risk Management Trends

The Secret Sprawl Crisis: Why AI Development Demands a New Security Playbook

We’re witnessing a fundamental shift in how secrets leak into codebases, and traditional scanning approaches are falling dangerously behind. The numbers tell a stark story. Recent reports suggest that teams using AI code-generation tools may face up to ...

DevSecOps Risk Management

AI and Cybersecurity: Threats, Defenses, and What to Expect Next

Artificial intelligence (AI) is reshaping cybersecurity. It’s being used to defend networks and to launch more sophisticated attacks. AI and cybersecurity are now closely connected, for better and worse. As threats become more advanced and harder to detect, i...

DevSecOps Kiuwan Risk Management Trends

Secure Your Code,
Protect Your Business

Detect vulnerabilities early and strengthen your security. Take control now to safeguard your app. See Kiuwan in action!

Request a Trial

Empower Your DevSecOps With Kiuwan

Subscribe to our Newsletter!

Products

SAST SCA Add-Ons

Resources

Blog Webinars eBooks Product Documentation Videos Partner Program

About Us

About Kiuwan Success Stories Contact Us Support Legal Privacy Policy

AppSec Blog

Keep up with the latest news on cybersecurity, technical trends, and programming best practices.

Category: Risk Management

Recent Posts

How to Find CVE-2025-55182 (React2Shell) with Kiuwan

SAST and Automation Tooling: The Smart Way for Lean Organizations to Scale Security

Application vulnerability: How to detect and fix security risks before deployment

How SAST and Application Hardening Work Together to Strengthen Software Security

Detecting React2Shell with Kiuwan: A Practical Guide for AppSec Engineers

Buffer Overflow Attacks: Causes, Outcomes, and Prevention

Defending Your Software Supply Chain: How to Use Kiuwan Against Shai-Hulud, Log4J, and Polyfill Attacks

What Is Cross-Site Scripting (XSS) and Why It Matters?

12 Ways AI Is Improving Cloud Security

AI in SAST: How Artificial Intelligence Enhances Application Security

The Secret Sprawl Crisis: Why AI Development Demands a New Security Playbook

AI and Cybersecurity: Threats, Defenses, and What to Expect Next

Secure Your Code,Protect Your Business

Empower Your DevSecOps With Kiuwan

Secure Your Code,
Protect Your Business