Contrast vs the Log4J2 CVE – A demonstration

| | DevSecOps, Vulnerabilities
This week, we proved that we could find the vulnerability that caused CVE-2021-44228 and stop attacks against it, without updating versions or using a WAF. Here is a short demonstration from our founder Jeff Williams:  ... Read More

Contrast Announces the First Breakthrough in SAST in 15 Years

| | scan
Traditional Scanning Tools Can’t Keep Up ... Read More

A Single Security Platform That Actualizes DevSecOps

Security and Development Are Out of Synch When bringing new applications to market, speed has become a top priority. Nearly 80% of organizations say their development team is under growing pressure to shorten release cycles. Companies are increasingly adopting DevOps tools, open-source components, and cloud-native/serverless approaches to achieve more aggressive ... Read More

Top 5 Challenges Securing Applications with WAFs

Application Security teams have very few options when it comes to defending their applications in production. Specifically, they struggle to get value from their firms’ Web Application Firewall (WAF) implementations, currently their only viable alternative. As their organizations adopt Agile / DevOps and constantly change the application and migrate to ... Read More