blubracket, Author at Security Boulevard

Why Organizations Today Need a Risk-Based Approach to Code Security

| | Blog
We salute October as National Cybersecurity Awareness Month As we salute the national cybersecurity awareness month, we also want to recognize the ongoing increase in application-based software supply chain attacks. The process to deliver security and protection during software development cycles are disjointed, leading to gaps, vulnerabilities and lots of false ... Read More

Why Developers Need More than SAST and DAST for Real Code Security

| | Blog
When SAST, DAST, IAST etc. are Just Not Enough Once developers find tools that work for them, it is hard to make a change. SAST and other legacy Application Security tools fall into the area of being solid tools that work. In the last couple of years the threat landscape ... Read More
BluBracket to Enable Developer Empowerment – Appoints Casey Bisson Head of Product Growth

BluBracket to Enable Developer Empowerment – Appoints Casey Bisson Head of Product Growth

| | Blog
We’re excited to announce Casey Bisson has been appointed the Head of Product Growth at BluBracket. BluBracket’s mission is to empower individual developers with the information and tools they need to enhance security across all aspects of their development workflows. BluBracket is on a journey to enable this transformation by ... Read More

Secure Your Software Supply Chain in 4 Easy Steps

| | Blog
The now infamous SolarWinds hack is the largest cybersecurity attack in history leaving hundreds of millions at risk, and unfortunately there are signs that the wave of copycat crimes are already underway. The culprits perpetrating these breaches attack what is now widely acknowledged as the most vulnerable and least protected ... Read More
Software Supply Chain: Preventing Breaches Early

Software Supply Chain: Preventing Breaches Early

| | Blog
Secrets in code is one of the most common attack vectors today.  The Solarwinds attack is probably the most recent and egregious example, but for every Solarwinds incident there are dozens, if not hundreds, of similar breaches every day that go unreported.  Having a breach of any kind is, of ... Read More

SolarWinds: Intern leaked passwords on GitHub

| | Blog
Last week, SolarWinds’ CEO testified in front of Congress on the hack that is largely considered the most damaging in US history. Representatives chastised the company over how the now infamous password “solarwinds123” was used for a file server. Even more damaging, that password was found in publicly available repos ... Read More
Finding Secrets in Code the DevSecOps way

Finding Secrets in Code the DevSecOps way

| | Blog
Secrets in code have become a massive security challenge for two main reasons: Code driven automation is ubiquitous. Passwords and credentials are quite often accidentally, and sometimes intentionally, checked into code. SaaS and IaaS has led to proliferation of tokens used to invoke other services. These tokens, especially in publicly ... Read More
How to reduce false positives while scanning for secrets

How to reduce false positives while scanning for secrets

| | articles, Blog
Secrets in code are a pervasive and ever increasing attack vector in modern software companies.  If you’ve ever used a secret scanning tool to detect secrets in your code, you’ve probably had to deal with the overwhelming amount of false positives.  In some cases, the level of noise is so ... Read More
How Secrets in Code Lead to Security Breaches

How Secrets in Code Lead to Security Breaches

| | Blog
Once upon a time, when desktop applications reigned supreme, the security of the application was placed on the shoulders of the end user on his/her desktop. A developer (or team of developers) would create an application and release it to the end users and IT admins, who would, in turn, ... Read More

BluBracket Community Edition Eliminates Secrets in Code for Free

| | Blog, SBN News
In wake of the SolarWinds breach, BluBracket shifts security left by introducing first tool to rank security risks and identify secrets early in the software development cycle PALO ALTO, Calif., February 9, 2020 – BluBracket, the leader in code security for developers and security engineers, today is announcing the general ... Read More

Techstrong Group