AppSec Blog

Integrating Application Security in DevOps

Why Application Security Is More Critical Than Ever in DevOps Application security was obviously always important in DevOps environments, but the need for a high level of security is getting stronger and stronger daily. Here are a few reasons why you really n...

DevSecOps Industry AppSec

Code Analysis of Twitter’s DistributedLog

Recently, the Twitter engineering team (@TwitterEng) published an interesting library: DistributedLog, a replicated and highly efficient service to manage the logs of applications. A summary of its characteristics as found in the documenta...

Programming Language

14 Tips for Developing Angular Applications

Initially developed by Google, Angular has become one of the leading frameworks for web application development. Its popularity is due to the extensive capabilities it offers. However, Angular is complex, and taking full advantage of its features depends on h...

Programming Language DevSecOps

The Comprehensive Defects List for Better Code Quality

Kiuwan indicators are based on evidence. Part of that evidence —along with intrinsic code metrics— are the defects and vulnerabilities found in the source code analysis Right. What does Kiuwan consider a defect? A defect is a violation to a rule defined in th...

DevSecOps Programming Language

The Biggest Cloud Breaches of 2020

PCR’s (UK) Top 10 Biggest data breaches of 2020 PCR is a leading information source for IT resellers and distributors in the United Kingdom. It reports its top 10 based on the number of records breached in the incidents selected. They cite the Risk Based...

Trends

How to Secure Serverless Applications

Although the term says “serverless,” serverless applications don’t really run without any servers involved. Rather, serverless applications run inside cloud-based infrastructures so that developers and operators need no longer stand up and run their own serve...

DevSecOps

securing serverless applications graphic

What Is Cyber Insurance? A Comprehensive Guide

Social media, advanced technology, and the growing popularity of business transactions over the web continue to determine how organizations operate and communicate with their prospective customers. However, they’re also gateways to cyberattacks and data loss....

DevSecOps Industry AppSec

The Canary in the Coal Mine: Detecting Cyberattacks Early

Canary in a Coal Mine: Detecting Cyberattacks Early Many catastrophic events are obvious, with their effects immediately visible — but not all. Fire, flood, tornadoes and earthquakes are all examples of events that can cause a substantial impact to business o...

DevSecOps Industry AppSec Risk Management

How to Proactively Address Payment Card Security Threats

Payment card attacks are nothing new. Cybercriminals have been targeting payment cards for more than a decade. However, there is a disturbing trend of cybercriminals discovering and leveraging novel ways to steal payment cards credentials during online transa...

Risk Management

Securing Cloud Access in Applications

As applications become increasingly cloud-based – or even, cloud-native – more and more such code is sending data to and from cloud-based stores, both public and private. This makes the methods and controls that such applications use to access the cloud of pa...

Risk Management

Beyond SolarWinds: Stopping Software Supply Chain Attacks

Software supply chain attacks are more common and more dangerous than ever. Learn what your company can do to protect itself and keep customers’ data safe.

DevSecOps

How to Prevent Threats in Healthcare Application Security

Healthcare Sector Application Security: Preventing Threats from Becoming Attacks Software security isn’t a state of being, or even a single action; it is a process, and one that requires more than just hardening your software. The year 2020 saw a dramati...

DevSecOps Industry AppSec Trends

Preventing threats in Healthcare security graphic

Keep up with the latest news on cybersecurity, technical trends, and programming best practices.

Recent Posts

Integrating Application Security in DevOps

Code Analysis of Twitter’s DistributedLog

14 Tips for Developing Angular Applications