Vibe coding is seductive — but also a risk that requires security controls
Vibe coding is having its moment as the latest hoped-up AI technology, but busy enterprise development and security operations teams have to be aware of its risks ... Read More
MCP is a powerful new AI coding technology: Understand the risks
The fledgling Model Context Protocol standard has generated lots of headlines and discussion among developers, who like that MCP makes it easy to connect large language models (LLMs) directly with tools and data. The question is whether development teams and organizations are aware of the risks ... Read More
Vibe coding: What automating development means for AppSec
Vibe coding, the practice of using large language models (LLMs) and prompts to write usable code, has been garnering plenty of attention lately. ... Read More
7 container security best practices
Properly securing containers has never been easy, but the rise of software supply chain attacks — and new threats coming from AI — makes additional security controls essential. Threats and risks must be identified and addressed before containers are deployed, of course, but because the size and complexity of these ... Read More
8 key software security fails to avoid
You've probably gotten your fill of security best practices. Their goal of helping enterprises avoid disruptive cyberattacks, data breaches, and other business-crushing dangers is admirable, but bad security practices may be a better place to start, a new report from the U.S. Cybersecurity and Infrastructure Security Agency (CISA) suggests ... Read More
8 key software security fails to avoid
You've probably gotten your fill of security best practices. Their goal of helping enterprises avoid disruptive cyberattacks, data breaches, and other business-crushing dangers is admirable, but bad security practices may be a better place to start, a new report from the U.S. Cybersecurity and Infrastructure Security Agency (CISA) suggests ... Read More
Compliance as cybersecurity: A reality check on checkbox risk management
In the world of cybersecurity, compliance is a no-brainer. Adhering to corporate and regulatory compliance standards is critical for enterprises. And while compliance does not ensure active and constant protection against cybersecurity threats, it's a standard to aim for that can ensure stealthier cybersecurity for enterprises. Chris Hughes, CEO of ... Read More
