Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Application Security

The latest News and Information on Application Security including monitoring, testing, and open source.

rezilion

AppSec and Software Supply Chain Security: How Do They Go Together?

Jul 5, 2023 By Rezilion In Rezilion

AppSec and Software Supply Chain Security are two terms more frequently used as part of DevOps, as well as when considering how to develop a security strategy. Software supply chain attacks are on the rise and organizations must brace for the strong possibility that their software supply chain will be a target–so much so that Gartner has projected that by 2025, supply chain risk management will be a key success driver for more than 50% of organizations.

Read Post

Container Security Fundamentals - Linux Namespaces (Part 2): The PID Namespace

Jul 5, 2023 By Datadog In Datadog
In this video we continue our examination of Linux namespaces by looking at some details of how the PID namespace can be used to isolate a container’s view of processes running on the host, and how this feature can be used for troubleshooting container problems. To learn more read our blog on Datadog’s Security Labs site.
View Video

Cloud Security Lounge: Vulnerability Management the SBOM Way

Jun 29, 2023 By Datadog In Datadog
Vulnerability Management always starts from… a list of vulnerabilities. But where does this list come from? How do you know what software an organization is using? SBOM is a way to describe all this. It’s a data model, a format, used by a broad ecosystem helping manage vulnerabilities and more.
View Video
mend

Announcing the Open-Source Reliability Leaderboard: A New Resource for Preventive AppSec

Jun 29, 2023 By Carol Hildebrand In Mend

We are excited to announce the inaugural edition of the Mend.io Open-Source Reliability Leaderboard! Powered by data from Renovate, the wildly popular open-source dependency management tool, the Leaderboard presents the top packages in terms of reliability across three of the most widely used languages.

Read Post
sentrium

Application Security 101 - HTTP Headers Information Disclosure

Jun 27, 2023 By James Drew In Sentrium

This is the second article in our Application Security 101 mini-series. Read our first blog on how to configure HTTP response headers with security best practices. This time we’re going to discuss another misconfiguration that we often find during website penetration testing. This is not necessarily a ‘vulnerability’, however information disclosure via HTTP response headers can provide exact version information of the web server or web technologies in use on the underlying host.

Read Post
Sponsored Post
kondukto

Top 10 Reasons To Implement An ASPM Right Now!

Jun 26, 2023 By Can Taylan Bilgin In Kondukto

In today's interconnected and technology-driven world, cyber threats have become a significant concern for businesses. With the rise of advanced cyber attacks, data breaches, and cybercriminals, it has become imperative for organizations to implement strong security measures to protect their applications and data. Automated testing tools are the number one go-to solution for security teams trying to scale the discovery of vulnerabilities in their applications. However, as modern software development practices evolve, new attack surfaces emerge and so do new security testing tools that cover different attack surfaces.

Read Post

Bridging the Gap to Success: Strengthening Business Application Security for Organizations

Jun 22, 2023 By AlgoSec In AlgoSec
Get ready to unlock a wealth of knowledge as Jade empowers businesses to proactively fortify their security defenses, navigate risks, and ensure compliance with regulations to protect sensitive data and inspire customer confidence. Join Jade on this enlightening journey to gain a deeper understanding of the evolving threat landscape and discover the best practices that can propel your organization towards triumph through effective application security. Don't miss out on this exceptional opportunity to learn from a true industry expert who genuinely cares about empowering businesses like yours.
View Video

Seamless Application Security Unleashed: Transforming Network Security with AlgoSec

Jun 22, 2023 By AlgoSec In AlgoSec
Join Asher in this insightful video as he shares his expertise on transforming network security with AlgoSec. Discover how seamless application security can be unlocked anywhere with the power of AlgoSec's innovative solutions. Asher dives into the key aspects of network transformation, security automation, and compliance management, providing valuable insights and practical strategies to enhance your organization's security posture. Gain a deeper understanding of network visibility, application connectivity, and risk mitigation, as Asher guides you through the process of optimizing security policies and improving overall threat detection.
View Video

Chris Farris - Unblurring The Lines In Cloud Security

Jun 16, 2023 By Datadog In Datadog

00:00 Intro: welcome Chris!

03:05 Trends in cloud security, reflected at fwd:cloudsec

05:00 fwd:cloudsec submissions - more practitioners needed!

10:40 Blurring the lines: what does that practically means?

19:30 Cloud service providers maturity: their security posture evolved

24:30 Public Cloud Security Breaches

30:01 Public Cloud Security Breaches demo

32:35 the Last Pass attack deep dive

38:00 Identify the crown jewels!

View Video
Subscribe to Application Security

Copyright © 2024 OpsMatters™. All rights reserved.