Synopsys

The benefits of business logic assessments

Oct 23, 2023 By Vishrut Iyengar In Synopsys

The digital realm is an ever-expanding universe, and web applications serve as the gateway to valuable customer data, sensitive information, and financial transactions. Threat actors and cybercriminals are constantly devising new techniques to exploit vulnerabilities within these applications. Further, data privacy is a paramount concern, and organizations are entrusted with safeguarding information.

Read Post

Synopsys

Read more about The benefits of business logic assessments

DevSecOps Report: ASPM and its impact on software security

Oct 18, 2023 By Fred Bals In Synopsys

An interesting data point in the recently released Synopsys “Global State of DevSecOps 2023” report is the growing use of application security orchestration and correlation (ASOC), now more commonly referred to as application security posture management (ASPM).

Read Post

Synopsys

Read more about DevSecOps Report: ASPM and its impact on software security

The hidden business risks of technical debt in mergers and acquisitions

Oct 13, 2023 By Synopsys Editorial Team In Synopsys

In the fast-paced world of technology business, mergers and acquisitions (M&As) have become commonplace. Companies often seek growth, innovation, and market expansion through these strategic moves. However, amidst the excitement of potential synergies and increased market share, there is a lurking danger that can significantly impact the success of an M&A deal: technical debt.

Read Post

Synopsys

Read more about The hidden business risks of technical debt in mergers and acquisitions

Detecting vulnerable curl and libcurl versions with Black Duck SCA | Synopsys

Oct 12, 2023 By Synopsys In Synopsys

Learn how to identify which of your applications are impacted by the recent open source libcurl and curl vulnerability with Black Duck SCA.

View Video

Synopsys

Read more about Detecting vulnerable curl and libcurl versions with Black Duck SCA | Synopsys

How to respond to the curl and libcurl vulnerabilities

Oct 11, 2023 By Matthew Hogg In Synopsys

As referenced in our previous post, the software development world has been bracing for additional details regarding two vulnerabilities associated with cURL, one of which was assessed as critical by the maintainer and original creator of the project. The wait ended this morning, as a fixed version was released and details about the vulnerabilities were provided.

Read Post

Synopsys

Read more about How to respond to the curl and libcurl vulnerabilities

Deep Dive: 2023 Global State of DevSecOps Report

Oct 10, 2023 By Fred Bals In Synopsys

Aimed at examining the strategies, tools, and practices impacting software security, the just-released “Global State of DevSecOps 2023” report from Synopsys, is based on a survey conducted by Censuswide polling more than 1,000 IT professionals across the world. The following is a deep dive into key report findings.

Read Post

Synopsys

Read more about Deep Dive: 2023 Global State of DevSecOps Report

Preparing for critical libcurl and curl vulnerabilities (CVE-2023-38545)

Oct 9, 2023 By Mike McGuire In Synopsys

The maintainer and original author of curl, Daniel Stenberg, has taken to X (formerly Twitter) and LinkedIn to sound the alarm on what he refers to as “probably the worst security problem found in curl in a long time.” According to project maintainers, the fixed version, 8.4.0, is set to be released on Wednesday, October 11.

Read Post

Synopsys

Read more about Preparing for critical libcurl and curl vulnerabilities (CVE-2023-38545)

Find open source vulnerabilities in containers with Black Duck Binary Analysis | Synopsys

Oct 6, 2023 By Synopsys In Synopsys

Discover how to identify open source components and vulnerabilities in various software binaries including container images, mobile apps, and embedded software with Black Duck Binary Analysis What’s covered?

View Video

Synopsys

Read more about Find open source vulnerabilities in containers with Black Duck Binary Analysis | Synopsys

Track and manage open source risks across your application portfolio with Black Duck SCA | Synopsys

Oct 6, 2023 By Synopsys In Synopsys

Learn how your security teams can take a proactive approach to managing open-source risk using Black Duck. Join us as we explore the process of analyzing scan results, addressing new CVEs, and prioritizing remediation efforts.

View Video

Synopsys

Read more about Track and manage open source risks across your application portfolio with Black Duck SCA | Synopsys

Handling Unsafe External APIs with Seeker | Synopsys

Oct 6, 2023 By Synopsys In Synopsys

Learn how Seeker’s new consumption of external APIs feature helps users discover vulnerabilities caused by the untrusted data from external 3rd party API calls. This capability allows AppSec teams to comply and address API10:23 on OWASP API Security Risks 2023 list.

View Video

Synopsys

Read more about Handling Unsafe External APIs with Seeker | Synopsys

Subscribe to Synopsys

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Synopsys

The benefits of business logic assessments

DevSecOps Report: ASPM and its impact on software security

The hidden business risks of technical debt in mergers and acquisitions

Detecting vulnerable curl and libcurl versions with Black Duck SCA | Synopsys

How to respond to the curl and libcurl vulnerabilities

Deep Dive: 2023 Global State of DevSecOps Report

Preparing for critical libcurl and curl vulnerabilities (CVE-2023-38545)

Find open source vulnerabilities in containers with Black Duck Binary Analysis | Synopsys

Track and manage open source risks across your application portfolio with Black Duck SCA | Synopsys

Handling Unsafe External APIs with Seeker | Synopsys

Monthly Archive

Follow Us