Veracode
Veracode’s powerful cloud-based platform, deep security expertise, and systematic, policy-based approach provide enterprises with a simpler and more scalable way to reduce application-layer risk across their global software infrastructures.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
New Cybersecurity Executive Order: What You Need to Know
Last night, the Biden administration released an executive order on cybersecurity that includes new security requirements for software vendors selling software to the U.S. government. These requirements include security testing in the development process and a bill of materials for the open source libraries in use, so known vulnerabilities are disclosed and able to be tracked in the future. Without following these standards, companies will not be able to sell software to the federal government.
Recent Pipeline Attack Highlights Our Vulnerable Infrastructure
On Thursday, May 6, Colonial Pipeline, which operates a pipeline that delivers gasoline and jet fuel to nearly 45 percent of the U.S. East Coast, fell victim to a ransomware attack. The attack took over 100 gigabytes of data hostage, causing the company to halt all pipeline operations and shut down several of its systems. The attackers, identified as a criminal gang known as DarkSide, threatened to leak proprietary information unless a ransom is paid.
Part One: Using Veracode From the Command Line in Cloud 9 IDE
In this four-part series, we showcase how to submit Static Policy, Static Sandbox, Static Pipeline, SCA, and Dynamic from the command line using Docker Images and an Amazon Web Services Cloud9 IDE.
Part Two: Using Veracode From the Command Line in Cloud 9 IDE
In this four-part series, we showcase how to submit Static Policy, Static Sandbox, Static Pipeline, SCA, and Dynamic from the command line using Docker Images and an Amazon Web Services Cloud9 IDE.
Part Three: Using Veracode From the Command Line in Cloud 9 IDE
In this four-part series, we showcase how to submit Static Policy, Static Sandbox, Static Pipeline, SCA, and Dynamic from the command line using Docker Images and an Amazon Web Services Cloud9 IDE.
Part Four: Using Veracode From the Command Line in Cloud 9 IDE
In this four-part series, we showcase how to submit Static Policy, Static Sandbox, Static Pipeline, SCA, and Dynamic from the command line using Docker Images and an Amazon Web Services Cloud9 IDE.
Collision Conference: "Secure from the top down" with Chris Wysopal
Millions of vulnerabilities are discovered and exploited regularly across all industries. The average cost of a data breach is over US$3 million. Now that the world has been pushed online more than ever, securing our digital lives has become even more critical.
Create Security Labs Users from the Veracode Platform
In this video, you will learn how to create Security Lab users from the Veracode Platform. Veracode Security Labs provides interactive training labs that give developers practical security knowledge. Security Labs teaches security and application security (AppSec) skills through hands-on experience. The lab-based approach to developer enablement can improve the time it takes to resolve findings and help developers avoid introducing flaws into the code.
Executive Order on Cybersecurity Is Imminent: It's Been a Long Time Coming
Following President Biden’s address to Congress last night in which he referenced cybersecurity as a priority twice, news is circulating today that the executive order on cybersecurity is imminent. This news comes as a much awaited and long overdue step towards creating standardization and structure around cybersecurity.