The agency's new IT Sector-Specific Goals (SSGs) for application security aim to keep Secure by Design going strong. Here are the top action items.
Read More about CISA cybersecurity performance goals: 7 action items to boost your AppSec
Learn how Glasswall leverages file reputation data to strengthen zero-trust file protection in its Content Disarm and Reconstruction approach.
Read More about Glasswall and RL: Enhancing CDR with Advanced Threat Intelligence
Software development teams working on machine learning take note: RL threat researchers have identified nullifAI, a novel attack technique used on Hugging Face.
Read More about Malicious ML models discovered on Hugging Face platform
Learn how RL's Advanced Malware Analysis can help your organization move beyond the sandbox to better guard against malicious files.
Read More about Sandboxes Alone Won’t Stop the Malware Onslaught. Here’s What Will.
Here are key practices you must implement to protect container workloads — and new controls needed for all software — in the age of supply chain security.
Read More about Get real about container security: 4 essential practices to manage risk
When it comes to these two security approaches advanced by CISA for locking down your application security, it's not an either/or proposition. Here's why.
Read More about Secure by Design and Secure by Default: You need both to boost AppSec
Identity management is key for security, but AI is bringing a lot more non-humans into the mix. The OWASP list calls attention to this. Here are the top takeaways.
Read More about OWASP tackles AI security with new NHI Top 10: What you need to know
AI can improve cybersecurity outcomes, but it also represents an entirely new threat. Upgrade your security strategy — and tooling — for the AI age.
Read More about AppSec & Supply Chain Security | January 28, 2025 AI is a double-edged sword: Why you need new controls to manage risk
The report emphasizes traditional AppSec practices — but those are no match for new threats from AI/ML. Here's what you need to know.
Read More about BSIMM15 shines light on compliance and AI security
Here are the key reasons you should consider multi-scanning — and how ReversingLabs’s solution delivers best-of-class performance.
Read More about Multi-Scanning Antivirus: Boost Your Threat Hunting With Multiple Layers
AI's integration across enterprise platforms is "rapidly expanding the global attack surface." Here are five action items for your team.
Read More about Securing generative AI: 5 action items to protect your organization
AppSec experts and software risk managers say doing security checks earlier isn't enough. Here's why — and what else organizations should do.
Read More about Going beyond 'shift left': Why shared responsibility is key to risk management
The study, from the Linux Foundation, OpenSSF, and Harvard, highlights key open-source risk areas. Here's what you need to know.
Read More about Census III study spotlights ongoing open-source software security challenges
Here's what's driving the compliance-as-security trend — and why it's essential to go beyond checkbox cybersecurity amid a rapidly changing threat landscape.
Read More about Compliance as cybersecurity: A reality check on checkbox risk management
Here’s what the 2024 8-K security-incident filings are all about, lessons to be learned — and the bigger picture for cybersecurity.
Read More about SEC cybersecurity disclosures and lessons to be learned: A timeline