Collaborate Disseminate
Security teams around the world got another shock on Thursday when news of disclosure of a PoC for an unauthenticated RCE zero-day vulnerability in Spring Core, a massively popular framework for building modern Java-based enterprise applications, began… Continue reading Spring4Shell: No need to panic, but mitigations are advised
Contrast Security announced its commitment to ally with and protect customers during the current state of heightened cybersecurity risks, as the Russia-Ukraine conflict continues. In addition to increased security controls, Contrast’s dedicated D… Continue reading Contrast Security works with global businesses to build overall security readiness and resilience
Here’s a look at the most interesting products from the past week, featuring releases from Actiphy, Ciphertex Data Security, Contrast Security, Deepfence, Ostrich Cyber-Risk, PKI Solutions, Progress, and Swissbit. Swissbit iShield FIDO2 protects access… Continue reading New infosec products of the week: March 18, 2022
Contrast Security announced that its Secure Code Platform now integrates software supply chain security across the development lifecycle, from the developer desktop to production systems. The new integration makes Contrast the first platform on the mar… Continue reading Contrast Security adds software supply chain security capabilities to its Secure Code Platform
Contrast Security announced its partnership with GitHub and the availability of its suite of GitHub Actions, simplifying the process for developers to ensure the code they build is free of security vulnerabilities. Implementing DevSecOps transformation… Continue reading Contrast Security partners with GitHub to deliver pipeline-native security to developers
A critical zero-day vulnerability in Apache Log4j (CVE-2021-44228), a widely used Java logging library, is being leveraged by attackers in the wild – for now, fortunately, primarily to deliver coin miners. Reported to the Apache Software Foundati… Continue reading Critical RCE 0day in Apache Log4j library exploited in the wild (CVE-2021-44228)
Contrast Security announced that it has closed $150M in a Series E round of funding at a greater than billion-dollar valuation. The oversubscribed round was led by Liberty Strategic Capital, founded by former Secretary of the Treasury Steven Mnuchin, t… Continue reading Contrast Security raises $150M to advance application security
Contrast Security announced its integration with Secure Code Warrior to deliver just-in-time security contextual micro-learning modules to enhance developers’ skills to easily fix vulnerabilities without the need of a security team. Contrast̵… Continue reading Contrast Security partners with Secure Code Warrior to deliver security training for developers
At its inaugural Global Partner Virtual Summit, Secure Code Warrior announced significant enhancements to its global partner program, as well as expanded integrations with leading DevSecOps vendors that extend its developer-centric approach to secure c… Continue reading Secure Code Warrior enhances partner program, extends DevSecOps vendors integrations
Contrast Security announced the findings of a report based on a comprehensive survey of development, operations, and security professionals and executives at enterprise-level financial services institutions. The report explores the state of application… Continue reading Application security not a priority for financial services institutions