On May 7, Colonial Pipeline had to shut down its pipelines due to a ransomware attack. Colonial is a major oil pipeline operator in the southern and eastern United States. Its pipelines extend from Texas to New Jersey and reach Louisiana, Mississippi, Alabama...
Software quality management solutions use automated tests and static analysis to generate software quality metrics. With the ability to parse code in almost every commonly used programming language, static analysis is useful in assessing f...
Malware has become a constant reality for most businesses. Ransomware alone cost around $5 billion in 2017–and those numbers are predicted to continue to rise in the coming years, potentially reaching as much as $11.5 billion by 2019. Prot...
There is almost an endless list of reasons why application security is important to businesses. Those range from maintaining a positive brand image to preventing security breaches that impact the trust that your clients and shareholders have in your business....
Canary in a Coal Mine: Detecting Cyberattacks Early Many catastrophic events are obvious, with their effects immediately visible — but not all. Fire, flood, tornadoes and earthquakes are all examples of events that can cause a substantial impact to business o...
Payment card attacks are nothing new. Cybercriminals have been targeting payment cards for more than a decade. However, there is a disturbing trend of cybercriminals discovering and leveraging novel ways to steal payment cards credentials during online transa...
As applications become increasingly cloud-based – or even cloud-native – more and more such code sends data to and from cloud-based stores, both public and private. This makes the methods and controls that such applications use to access the cloud of particul...
In this age of lockdowns, social distancing and working from home, organizations must think carefully about how to extend their networks and services across the internet and into employees’ and contractors’ homes. This makes remote access security management ...
Development tools are growing more advanced; large language models can now write code for us based on simple, plain English requests. Unfortunately, malicious actors also have access to increasingly powerful tools. As a result, cybersecurity risk management h...
Delivering a secure mobile app to users requires developers to prioritize security throughout the software’s development pipeline. An organization’s System Development Life Cycle (SDLC) should include clear and straightforward security instructions that...
With cybersecurity incidents increasing at an alarming rate, modern development teams are transitioning to a DevSecOps framework to integrate security into the entire software development lifecycle (SDLC). This approach helps create more secure and resilient ...
Open-source software dramatically simplifies and speeds up the development process. However, it also carries significant risks in the form of vulnerabilities. The public nature of open-source code means that databases such as Open Source Vulnerabilities ...
