What 36,000 OSS Projects and 12,000 Commercial Dev Teams Taught Us About Secure Coding Practices

After ten months of research which involved studying 36,000 open source software projects, 12,000 enterprise development teams, and 3.7 million open source releases, we are pleased to announce the arrival of the ...
In the Dark About Supply Chain Vulnerabilities

In the Dark About Supply Chain Vulnerabilities

The software supply chain can create a seemingly endless attack surface. Here’s what you can do to better protect it. Is the “Barium” hacking collective Chinese? Russian? North Korean? It really doesn’t ...
Security Boulevard
Yet Another WordPress Extension Changes Owner and Gets Backdoored

Yet Another WordPress Extension Changes Owner and Gets Backdoored

A WordPress plug-in called Captcha with more than 300,000 active installations contained a backdoor that allowed its maintainer to gain unauthorized administrative access to other people’s websites. The plug-in was apparently backdoored ...
Security Boulevard
Three-Quarters of Enterprise Applications Have at Least One Vulnerability

Three-Quarters of Enterprise Applications Have at Least One Vulnerability

Security firm Veracode has released its annual report on the state of software security and it paints a bleak picture: 77 percent of enterprise applications assessed for the first time had at ...