%term

Unveiling Secrets Detection with JFrog Frogbot

Oct 17, 2023 By Michael Sverdlov In JFrog

In today’s interconnected world, secrets are the keys to unlocking sensitive data and systems. Like hidden gems for attackers, any inadvertent exposure of these secrets could lead to data breaches, unauthorized access, and security compromises. As organizations adopt DevOps practices, artifacts containing secrets are often stored and shared across various stages of the software supply chain, amplifying the risk of exposure.

Read Post

JFrog

Read more about Unveiling Secrets Detection with JFrog Frogbot

IT admins are just as culpable for weak password use

Oct 17, 2023 By Outpost 24 In Outpost 24

New data from Outpost24 reveals that IT administrators could be just as predictable as end-users when it comes to passwords. An analysis of just over 1.8 million passwords ranks ‘admin’ as the most popular password with over 40,000 entries, with additional findings pointing to a continued acceptance of default passwords.

Read Post

Outpost 24

Read more about IT admins are just as culpable for weak password use

SocketSleuth - Burp Suite Extension for websocket testing

Oct 17, 2023 By Snyk In Snyk

Snyk helps software-driven businesses develop fast and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and more.

View Video

Snyk

Read more about SocketSleuth - Burp Suite Extension for websocket testing

New ESG Research Report Outlines Best Practices for Effective Application Security Programs

Oct 17, 2023 By Adam Murray In Mend

New research from TechTarget’s Enterprise Strategy Group (ESG) has identified that organizations’ application security programs struggle to keep up with the pace of software development, and it reveals best practices to secure modern software applications.

Read Post

Mend

Read more about New ESG Research Report Outlines Best Practices for Effective Application Security Programs

GitGuardian Can Update Pull RequestsWith GitHub Check Runs

Oct 16, 2023 By GitGuardian In GitGuardian

Did you know that GitGuardian can add comments directly to your GitHub pull requests and even stop a PR from succeeding if it contains any hardcoded secrets? When a new pull request is created, a new check run is performed, and GitGuardian will scan through each commit inside the PR, not just the most recent one. If someone added a secret to an early commit, but then removed it right before making the PR, you still need to know it is present in the git history so you can address it.

View Video

GitGuardian

Read more about GitGuardian Can Update Pull RequestsWith GitHub Check Runs

GitProtect.io DevOps backup for Jira - DEMO

Oct 13, 2023 By GitProtect In GitProtect

Ransomware attacks, human errors, or outages can become a live nightmare! Eliminate any data loss scenario - watch our demo and learn how to build a comprehensive backup for your Jira ecosystem!

View Video

GitProtect

Read more about GitProtect.io DevOps backup for Jira - DEMO

Integrate GitGuardian With Your Azure Repos

Oct 12, 2023 By GitGuardian In GitGuardian

Are you building your applications on Azure? Good news, it is now easier than ever to integrate GitGuardian with Azure repos. Azure is one of the most popular cloud platforms out there. Now, GitGuardian users can integrate their Azure Repos in two different ways: at the organization level or the instance level.

View Video

GitGuardian

Read more about Integrate GitGuardian With Your Azure Repos

Why The US Government Continues to Push for Software Supply Chain Security

Oct 12, 2023 By AJ Starita In Mend

October is officially Cybersecurity Awareness Month in the United States but September was a good month for it, too.

Read Post

Mend

Read more about Why The US Government Continues to Push for Software Supply Chain Security

Office Hours: Fixing Vulns Live in the IDE Plugin Made Easy

Oct 11, 2023 By Snyk In Snyk

Do you want to learn how to best fix vulnerabilities in your IDE? Snyk helps software-driven businesses develop fast and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and more.

View Video

Snyk

Read more about Office Hours: Fixing Vulns Live in the IDE Plugin Made Easy

The Latest Trends in API Security: The 2023 OWASP API Security Top Ten

Oct 10, 2023 By Adam Murray In Mend

The Open Web Application Security Project (OWASP) has published the latest edition of its API Security Top Ten, which was first published in 2019. The Top Ten is a significant daughter list of the OWASP Top Ten, which is one of the most definitive lists of the most severe web application risks. Why is this important? What are its main findings? And what does this mean for application security?

Read Post

Mend

Read more about The Latest Trends in API Security: The 2023 OWASP API Security Top Ten

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Unveiling Secrets Detection with JFrog Frogbot

IT admins are just as culpable for weak password use

SocketSleuth - Burp Suite Extension for websocket testing

New ESG Research Report Outlines Best Practices for Effective Application Security Programs

GitGuardian Can Update Pull RequestsWith GitHub Check Runs

GitProtect.io DevOps backup for Jira - DEMO

Integrate GitGuardian With Your Azure Repos

Why The US Government Continues to Push for Software Supply Chain Security

Office Hours: Fixing Vulns Live in the IDE Plugin Made Easy

The Latest Trends in API Security: The 2023 OWASP API Security Top Ten

Monthly Archive

Follow Us