SCA Is No Longer Relevant: Insights From the Founder of Black Duck
The future of application security requires a shift beyond traditional tools.
SCA Is No Longer Relevant: Insights From the Founder of Black Duck
Spectra Assure Artifactory Integration: Securing Software Development
ReversingLabs integration with JFrog Artifactory provides a seamless way to scan all software artifact types, protecting critical software supply chains.
8 key software security fails to avoid
Security best practices can help, but it’s the bad practices that will expose your company to software risk. Here are the ones to avoid at all cost.
Secure AI deployment is complicated: 5 ways to get your ducks in a row
A Cloud Security Alliance report explores new requirements for the tools, processes, and roles that secure AI-driven systems. Here are key takeaways.
What developers think about application security might surprise you
Software security is front of mind for organizations. What developers have to say is critical. Here are four key takeaways from a survey of engineers about AppSec.
Suspicious file analysis: Enhance your SOC to fight sophisticated attacks
Several factors are driving the need for better detection of malicious files. Ransomware is one that stands out. Here's how to boost your triage efforts.
CISA cybersecurity performance goals: 7 action items to boost your AppSec
The agency's new IT Sector-Specific Goals (SSGs) for application security aim to keep Secure by Design going strong. Here are the top action items.
Glasswall and RL: Enhancing CDR with Advanced Threat Intelligence
Learn how Glasswall leverages file reputation data to strengthen zero-trust file protection in its Content Disarm and Reconstruction approach.
Malicious ML models discovered on Hugging Face platform
Software development teams working on machine learning take note: RL threat researchers have identified nullifAI, a novel attack technique used on Hugging Face.
Sandboxes Alone Won’t Stop the Malware Onslaught. Here’s What Will.
Learn how RL's Advanced Malware Analysis can help your organization move beyond the sandbox to better guard against malicious files.
Get real about container security: 4 essential practices to manage risk
Here are key practices you must implement to protect container workloads — and new controls needed for all software — in the age of supply chain security.
Secure by Design and Secure by Default: You need both to boost AppSec
When it comes to these two security approaches advanced by CISA for locking down your application security, it's not an either/or proposition. Here's why.
OWASP tackles AI security with new NHI Top 10: What you need to know
Identity management is key for security, but AI is bringing a lot more non-humans into the mix. The OWASP list calls attention to this. Here are the top takeaways.
AppSec & Supply Chain Security | January 28, 2025 AI is a double-edged sword: Why you need new controls to manage risk
AI can improve cybersecurity outcomes, but it also represents an entirely new threat. Upgrade your security strategy — and tooling — for the AI age.
BSIMM15 shines light on compliance and AI security
The report emphasizes traditional AppSec practices — but those are no match for new threats from AI/ML. Here's what you need to know.