CWE 248-Uncaught Exception occurs w hen an exception is not caught by a programming construct or by the programmer, it results in an uncaught exception. In Java, for example, this would be an unhandled exception that would terminate the program. Other languages have similar constructs. This can lead to unexpected ... Read More

Out-of-bounds reads occur when a program attempts to read data from memory that is outside of the bounds of what it is allowed to access. This can happen when a programmer makes a mistake in their code, or if malicious code is injected into a program. Out-of-bounds reads can lead ... Read More

ForAllSecure, a leader in modern application security testing, today announced that it is investing  $2 million to make open source software (OSS) more secure. The company also announced that it will offer a free version of its flagship product Mayhem. The winner of the DARPA Cyber Grand Challenge and featured ... Read More

Strong demand for application security that supports DevSecOps initiatives drives investment from Koch Disruptive Technologies and New Enterprise Associates Pittsburgh, PA – March 21, 2022 – ForAllSecure , the world’s most advanced application security testing technology, today announced it has raised $21 million in a series B funding round ... Read More

In mid-2021, the UNCE released new vehicle cybersecurity regulations in an effort to keep up with the rapid reliance of digitization within the automotive industry ... Read More

To start testing an API, you only need to provide two things: a specification describing the API, and a URL where it can be reached. You'll be running something like: mapi run my-api 30 --url API Specification ℹ️ Specifications can be passed to mapi as either local files ... Read More

ISO 26262 is a standard for functional safety and automotive safety integrity level (ASIL). and an important measure for automakers and suppliers to stay on top of. In this post, you'll receive an overview of ISO 26262, steps you can take to comply with the standard, as well as the ... Read More

The ISO SAE 21434 standard provides automakers and other stakeholders in the automotive industry with guidance on how to help protect road vehicles from cyberattacks. This post will broadly cover what ISO SAE 21434 is, who it directly affects, and how interested parties can comply ... Read More

Find out what API testing automation is, how it can help you in your organization, and why more organizations are turning to it ... Read More

Unsure of where to start when it comes to vulnerability scanning? This article will introduce you to the basics and show you how vulnerability scanning can help improve your organization's security posture ... Read More