Mobile apps: Insecure by default

Mobile apps: Insecure by default

There’s a lack of robust mobile app security on billions of devices people carry around. Why is it such a problem, and what can developers do to solve it? The post Mobile apps: Insecure by default appeared first on Software Integrity Blog ... Read More
Financial services cybersecurity still porous: Report

Financial services cybersecurity still porous: Report

A new financial services cybersecurity report reveals an industry aware of online threats but not doing enough to protect its systems, networks and data. The post Financial services cybersecurity still porous: Report appeared first on Software Integrity Blog ... Read More
Report: Financial services can do cyber security better with the right tools

Report: Financial services can do cyber security better with the right tools

The financial services industry is falling behind in cyber security. A new report shows where organizations should focus their software security efforts. The post Report: Financial services can do cyber security better with the right tools appeared first on Software Integrity Blog ... Read More
Apollo 11 software lessons still relevant today

Apollo 11 software lessons still relevant today

| | General
What did Apollo 11 teach us about software development? Coding practices have changed since 1969, but the lessons learned from the moon mission still hold. The post Apollo 11 software lessons still relevant today appeared first on Software Integrity Blog ... Read More
Ransomware versus cities: Sowing chaos as well as cost

Ransomware versus cities: Sowing chaos as well as cost

| | General
Ransomware attacks on cities are on the rise. The latest ransomware attacks of 2019 suggest that international organized criminals are behind the epidemic. The post Ransomware versus cities: Sowing chaos as well as cost appeared first on Software Integrity Blog ... Read More
Securing software development: NIST joins the parade

Securing software development: NIST joins the parade

The NIST Secure Software Development Framework (SSDF) is the latest standard aimed at improving software security. Can its novel approach help it succeed? The post Securing software development: NIST joins the parade appeared first on Software Integrity Blog ... Read More
Why hackers are targeting your web apps (and how to stop them)

Why hackers are targeting your web apps (and how to stop them)

How do you protect your web apps from hackers? Forget firewalls. You need an AppSec toolbelt, including software composition analysis and automated testing. The post Why hackers are targeting your web apps (and how to stop them) appeared first on Software Integrity Blog ... Read More
Get ready for a ransomware tsunami

Get ready for a ransomware tsunami

| | General
Ransomware payments might seem like a quick solution to get back on your feet after an attack. But paying the attackers just makes the problem worse. The post Get ready for a ransomware tsunami appeared first on Software Integrity Blog ... Read More
Patch now or pay later: Report

Patch now or pay later: Report

| | Data breach
To prevent data breaches, practice these two fundamentals: shift left (perform application security testing early and often in your SDLC), and always patch. The post Patch now or pay later: Report appeared first on Software Integrity Blog ... Read More
It’s not just you they’re after—it’s your supply chain too

It’s not just you they’re after—it’s your supply chain too

| | General
Supply chain attacks are not new. But as the supply chain grows longer and more complex, the attacks are evolving to keep up. Is your supply chain secure? The post It’s not just you they’re after—it’s your supply chain too appeared first on Software Integrity Blog ... Read More