software developers – Page 2

On the Road to DevSecOps: Securing the Software Driving Mobility

Posted on July 24, 2020 by Stephen Gates

The automotive industry is experiencing radical change—and software is the catalyst. Progressively more software, increasingly intelligent components, and new methods of interaction are finding their way into automobiles of all sizes and price. S… Continue reading On the Road to DevSecOps: Securing the Software Driving Mobility→

Mutation Cross-Site Scripting (mXSS) Vulnerabilities Discovered in Mozilla-Bleach

Posted on July 8, 2020 by Erez Yalon

As part of the beta testing phase that took place earlier this year for our recently launched Software Composition Analysis solution, CxSCA, the Checkmarx Security Research Team investigated Mozilla-Bleach, finding multiple concerning security vulnerab… Continue reading Mutation Cross-Site Scripting (mXSS) Vulnerabilities Discovered in Mozilla-Bleach→

The Road to DevSecOps: Addressing the Challenges of AppSec Awareness

Posted on June 25, 2020 by Stephen Gates

Recently, I had an opportunity to sit down with Kurt Risley and ask him about his experiences and observations when working with organizations who desire to develop a comprehensive AppSec Awareness Program. The Q&A is as follows: Stephen: Since our… Continue reading The Road to DevSecOps: Addressing the Challenges of AppSec Awareness→

Bringing Your Retail Application Security Strategy Up to Par

Posted on June 10, 2020 by Matthew Rose

It’s no secret that retail has been in the midst of a massive digital transformation over the past few years, largely driven by emerging software and technology, as shoppers seek out new experiences, increased level of conveniences, and exciting … Continue reading Bringing Your Retail Application Security Strategy Up to Par→

Octopus Scanner Sinks Tentacles into GitHub Repositories

Posted on June 2, 2020 by Tara Seals

At least 26 different open-source code repositories were found to be infected with an unusual attack on the open-source software supply chain. Continue reading Octopus Scanner Sinks Tentacles into GitHub Repositories→

Survey: Nearly Half of Americans Refusing or Unlikely to Opt-In to COVID-19 Contact Tracing Apps

Posted on May 21, 2020 by Susan St. Clair

Increased application and software usage heighten security concerns amongst consumers The past few months have placed digital transformation into overdrive, with consumers gravitating toward distance-enabling technology and applications more than ever … Continue reading Survey: Nearly Half of Americans Refusing or Unlikely to Opt-In to COVID-19 Contact Tracing Apps→

AppSec, the developer way: Transforming security from a “dirty word” to a common practice

Posted on May 19, 2020 by Dana Raveh

In a world where one data breach is all it takes to destroy a business, only the prepared and vigilant ones that embrace security in their operations can prevent disaster. Yet, if you ask most developers about security, they will crease up their faces … Continue reading AppSec, the developer way: Transforming security from a “dirty word” to a common practice→

Solidity Top 10 Common Issues

Posted on May 13, 2020 by Erez Yalon

In 2018, we performed our initial research about the current state of security in the context of Smart Contracts, focusing on those written in Solidity “a contract-oriented, high-level language for implementing smart contracts“. At that tim… Continue reading Solidity Top 10 Common Issues→

Github Repository Owners Targeted by Data-Stealing Malware

Posted on March 30, 2017 by Michael Mimoso

Owners of Github repositories were the focus of a phishing campaign spreading the Dimnie information-stealing malware. Continue reading Github Repository Owners Targeted by Data-Stealing Malware→