IT Security

From Reaction to Robots: Riding the AI Wave in 2024
Investment in security-aware developers and collaboration between them and AppSec teams should be a driving force in 2024 ...

Checkmarx Report Details Havoc Caused by ‘Everything’ Package on NPM Registry
A Checkmarx report details an 'Everything' package distributed via the NPM registry that cripples any machine used to download it ...

Sonar Adds Secrets Detection to Code Analysis Portfolio
Sonar has added a secrets detection capability to its portfolio of tools for analyzing code and DevOps workflows ...

Vulnerability Management for DevOps Teams: A Practical Guide
The goal of vulnerability management is to close the gap between discovery and resolution, thereby minimizing the window of opportunity for potential cyberattacks ...

Synopsys Report Sees Steady Application Security Gains
An analysis of the security automation practices of 130 organizations published by Synopsys suggests significant progress toward securing software supply chains ...

How Encryption Innovation Will Power Cloud Privacy for Developers in 2024
With new encryption technologies rapidly advancing, developers can ensure their applications are secure ...

Veracode Extends DAST Reach Left Toward Developers
Veracode launched a version of its automated DAST tool, dubbed DAST Essentials, that is embedded within an IDE ...

Three Strategies for Reducing MTTD and MTTR as Outage Costs Spiral
In a business environment where most interactions with customers, suppliers and business partners are conducted digitally, downtime has become a problem and an existential threat ...

Lineaje Allies With Persistent Systems on Open Source Software Remediation Service
Lineaje and Persistent Systems are providing a managed service for remediating open source vulnerabilities that leverages AI technologies ...

Redgate Automates Pulling of Test Data From Production Databases
Redgate's Test Data Management (TDM) tool eliminates manual tasks that previously inhibited testing and protects PII ...

Elastic Previews Unified Query Language for Search Platform
Elastic this week previewed a standard query language that can be used across its portfolio to streamline investigations into IT and cybersecurity events ...

Survey Surfaces Software Supply Chain Security Challenges
While there is general agreement on the importance of software supply chain security, there is a significant disconnect on how to achieve that goal ...

