Report

How to Build a Software Supply Chain Security Playbook

How to Build a Software Supply Chain Security Playbook

| | AI, Analyst Report, delivery pipeline, Gartner, Report, secure software supply chain, software supply chain
In the first post in this series, we looked at why software supply chain risk has become a growing security challenge. Modern applications depend on sprawling ecosystems of open source packages, automated ...
2024 Sonatype Blog

Why Developer Experience Is the Foundation of DevSecOps Success

| | AI, Analyst Report, Application Security, Artificial Intelligence, developer, developers, DevSecOps, Gartner, Report, software supply chain
Application security is evolving. But for many organizations, execution still lags behind intent ...
2024 Sonatype Blog

Why Software Supply Chain Security Requires a New Playbook

| | Analyst Report, CI-CD, Gartner, Report, secure software supply chain, Software Composition Analysis, software supply chain
Software is being built faster than ever, but application security has not kept up ...
2024 Sonatype Blog

AI, DevSecOps, and the Future of Application Security: The Gartner® Report

| | AI, Analyst Report, Application Security, Artificial Intelligence, developers, DevSecOps, Gartner, Report
Even as organizations recognize the importance of application security, most still struggle to operationalize it at scale. That gap becomes harder to ignore as development accelerates, AI becomes embedded in workflows, and ...
2024 Sonatype Blog
OAuth Device Flow Vulnerabilities: A Critical Analysis of the 2024-2025 Attack Wave

OAuth Device Flow Vulnerabilities: A Critical Analysis of the 2024-2025 Attack Wave

| | CIAM, iam, identity management, OAuth, OIDC, Report, security, Vulnerabilities
🚨 ShinyHunters compromised Google, Qantas & dozens more using OAuth device flow attacks—bypassing MFA without exploiting a single software bug. My deep-dive analysis reveals how they did it and what enterprises must ...
Deepak Gupta | AI & Cybersecurity Innovation Leader | Founder's Journey from Code to Scale
IBM, data, breaches,

IBM Report Sees Drop in Global Data Breach Costs Except in U.S.

| | AI, Cybersecurity, Data breaches, IBM, News, Report
An annual global analysis of 113,620 data breaches published by IBM today finds the cost of the average data breach decreased by 9% year over year, thanks mainly to faster discovery and ...
Security Boulevard
ransomware, attacks, business, data security compliance

Is Ransomware Dying? Don’t Break Out the Champagne Just Yet

| | AI, Ransomware, Report, Threat groups
We’re seeing fewer attacks, but that doesn’t mean we’re safer. The latest data from NCC Group shows traditional ransomware is down — but threat actors are regrouping, rebranding, and rearming with AI ...
Security Boulevard
resilience, SaaS, risk, security, Grip, SaaS adoption, security, , AI tools, vulnerabilities, applications, security, AppOmni, SaaS, security, cybersecurity, SaaS, Palo Alto, third-party vendors, SaaS security, CISO, SSPM, SaaS security, SentinelLabs AppOmni Valence SaaS security Thirdera SaaS management SSPM CISOs SaaS

The SaaS Security Disconnect: Why Most Organizations Are Still Vulnerable 

| | Cybersecurity, Report, risk, SaaS, survey
A new report from AppOmni captures a significant misplaced confidence in the security of software-as-a-service applications and escalating risks associated with these cloud services ...
Security Boulevard
alerts, teams, AI, threats, agents, data, leaders, F5, survey, AI, gap, small, small business, cybersecurity,

Survey Finds AI Adoption Outpacing Security Readiness 

| | AI, AI Security, observability, Report, survey
As organizations continue to deploy AI, security professionals find themselves confronting critical gaps in their level of preparedness, according to F5's 2025 State of AI Application Strategy Report ...
Security Boulevard
api security, data, NETSCOUT cybersecurity, attacks resources security challenges tools breach API attacker Radware Report Sees Major Spike in DDoS Attacks

Report Finds LLMs Are Prone to Be Exploited by Phishing Campaigns

| | AI, AI search tools, Cybersecurity, LLMs, Report, Search.tools
A report published this week by Netcraft, a provider of a platform for combating phishing attacks, finds that large language models (LLMs) might not be a reliable source when it comes to ...
Security Boulevard
Load more