Collaborate Disseminate
AI is quickly transforming how individuals create their own apps, copilots, and automations. This is enabling organizations to improve output and increase efficiency—all without adding to the burden of IT and the help desk. But while this transformatio… Continue reading Six steps for security and compliance in AI-enabled low-code/no-code development
In this Help Net Security video, Rob Whiteley, CEO at Coder, discusses the cloud development environment (CDE) technology landscape and its benefits. From the earliest stages of writing code to deploying finalized applications, CDEs are reimagining the… Continue reading Using cloud development environments to secure source code
In this Help Net Security interview, Omkhar Arasaratnam, General Manager at the Open Source Security Foundation (OpenSSF), discusses the evolution of memory-safe programming languages and their emergence in response to the limitations of languages like… Continue reading Transitioning to memory-safe languages: Challenges and considerations
Security debt, defined as flaws that remain unfixed for longer than a year, exists in 42% of applications and 71% of organizations, according to Veracode. Worryingly, 46% of organizations have persistent, high-severity flaws that constitute ‘critical’ … Continue reading 36% of code generated by GitHub CoPilot contains security flaws
According to a recent Dynatrace report, only 50% of CISOs believe that development teams have thoroughly tested the software for vulnerabilities before deploying it into the production environment. This is a statistic that needs to change and the only … Continue reading How to make developers accept DevSecOps
Despite stringent regulations and calls for ‘security by design’, organizations are still failing to equip teams with the knowledge to secure code, according to Security Journey. In fact, only 20% of respondents were confident in their ability to detec… Continue reading Unlocking sustainable security practices with secure coding education
Britain’s hush hush Government Communications Headquarters (GCHQ) intelligence and security organization has released new images never before made public of Colossus, the world’s first digital electronic computer, to mark its 80th anniversary.Continue … Continue reading British spy agency releases previously secret images of Colossus computer
A team of computer scientists led by the University of Massachusetts Amherst recently announced a new method for automatically generating whole proofs that can be used to prevent software bugs and verify that the underlying code is correct. This new me… Continue reading Researchers develop technique to prevent software bugs
Apiiro, a leading application security posture management (ASPM) solution, today announced its partnership with Wiz, the leading cloud security company and Cloud Native Application Protection Platform (CNAPP) provider. By joining Wiz Integrations (WIN)… Continue reading Wiz and Apiiro partner to provide context-driven security from code to cloud
Nearly 72% of applications in the financial services sector contain security flaws, according to Veracode. Despite the alarming figure, this rate of software vulnerability was the lowest of all industries analyzed and has improved since last year. The … Continue reading Key drivers of software security for financial services