What developers think about application security might surprise you
Software security is front of mind for organizations. What developers have to say is critical. Here are four key takeaways from a survey of engineers about AppSec.
What developers think about application security might surprise you
Suspicious file analysis: Enhance your SOC to fight sophisticated attacks
Several factors are driving the need for better detection of malicious files. Ransomware is one that stands out. Here's how to boost your triage efforts.
CISA cybersecurity performance goals: 7 action items to boost your AppSec
The agency's new IT Sector-Specific Goals (SSGs) for application security aim to keep Secure by Design going strong. Here are the top action items.
Glasswall and RL: Enhancing CDR with Advanced Threat Intelligence
Learn how Glasswall leverages file reputation data to strengthen zero-trust file protection in its Content Disarm and Reconstruction approach.
Malicious ML models discovered on Hugging Face platform
Software development teams working on machine learning take note: RL threat researchers have identified nullifAI, a novel attack technique used on Hugging Face.
Sandboxes Alone Won’t Stop the Malware Onslaught. Here’s What Will.
Learn how RL's Advanced Malware Analysis can help your organization move beyond the sandbox to better guard against malicious files.
Get real about container security: 4 essential practices to manage risk
Here are key practices you must implement to protect container workloads — and new controls needed for all software — in the age of supply chain security.
Secure by Design and Secure by Default: You need both to boost AppSec
When it comes to these two security approaches advanced by CISA for locking down your application security, it's not an either/or proposition. Here's why.
OWASP tackles AI security with new NHI Top 10: What you need to know
Identity management is key for security, but AI is bringing a lot more non-humans into the mix. The OWASP list calls attention to this. Here are the top takeaways.
AppSec & Supply Chain Security | January 28, 2025 AI is a double-edged sword: Why you need new controls to manage risk
AI can improve cybersecurity outcomes, but it also represents an entirely new threat. Upgrade your security strategy — and tooling — for the AI age.
BSIMM15 shines light on compliance and AI security
The report emphasizes traditional AppSec practices — but those are no match for new threats from AI/ML. Here's what you need to know.
Multi-Scanning Antivirus: Boost Your Threat Hunting With Multiple Layers
Here are the key reasons you should consider multi-scanning — and how ReversingLabs’s solution delivers best-of-class performance.
Securing generative AI: 5 action items to protect your organization
AI's integration across enterprise platforms is "rapidly expanding the global attack surface." Here are five action items for your team.
Going beyond 'shift left': Why shared responsibility is key to risk management
AppSec experts and software risk managers say doing security checks earlier isn't enough. Here's why — and what else organizations should do.
Census III study spotlights ongoing open-source software security challenges
The study, from the Linux Foundation, OpenSSF, and Harvard, highlights key open-source risk areas. Here's what you need to know.