Development teams are under growing pressure to build cutting-edge applications with shorter development lifecycles. However, they are often slowed down by the growing burden of fixing security vulnerabilities. Ineffective application security processes ...

The role cybersecurity teams play in ensuring applications are secure is about to become a lot more proactive in the age of artificial intelligence (AI) ...

Sonatype today during a virtual All-Day DevOps (ADD) event shared the results of a report that finds there has been a 156% increase in the number of malicious open source packages year-over-year, ...

AppSec in the Cloud: What DevOps Teams Should Know ...

A global survey of 900 application security professionals finds nearly two-thirds work for organizations that have had their software supply chains compromised in the past two years ...

Mend.io this week added a MendAI tool to its application security portfolio that identifies code generated by an artificial intelligence (AI) model ...

DevSecOps requires teams to collaborate and enable the organization to deliver safer applications to customers without compromising security ...

Cycode's generative AI capabilities in its ASPM platform make it simpler for DevSecOps teams to identify the root cause of vulnerabilities ...

Many API attacks are effectively zero-day, novel attacks that exploit recent and unique changes to specific APIs. Here's how to stop them ...

With its Helios acquisition, Snyk plans to add an ability to capture application runtime data to extend the capabilities of its ASPM platform ...

A survey found only 20% of IT and security professionals are confident in their ability to detect a vulnerability before an app is released ...

Backslash announced general availability of an ASPM platform that identifies and prioritizes vulnerabilities based on ease of exploitation ...