<iframe src="//www.googletagmanager.com/ns.html?id=GTM-WQV6DT" height="0" width="0" style="display:none;visibility:hidden">

SECURITY INFLUENCERS BLOG

Security influencers provide real-world insight and “in-the-trenches” experiences on topics ranging from application security to DevOps and risk management

How Visibility and Data Unite Engineering, Security & Operations: Dev + Sec + Ops = DevSecOps

ByMahesh Babu October 13, 2017

More than ever before, the security of a running application is a shared responsibility:

  1. The security team needs to detect, monitor and respond to an application layer breach
  2. The operations team needs to ensure performance, stability & reliability..
Continue Reading >>

Redirects from Third-party JavaScript on Equifax Lead to More Hacks

As we mentioned last week, Equifax continues to make headlines and ramifications of building sites with insecure code is taking a its toll. Below you'll read a series of startling comments that appeared this past week by Jeff Williams, Contrast..

Continue Reading >>

Still Making Headlines – Struts 2 and the Equifax Breach

Yes, we have all seen the headlines.  But, don’t think that the issues that arose from the Equifax breach and the Struts 2 vulnerability will disappear any time soon. Last time I checked, there were 34 articles published that Contrast was either..

Continue Reading >>

PRESS RELEASE: With Contrast Security Alliances, Easy, Scalable Self-Protecting Software Comes to the Cloud

Leader in Security Software Enables Continuous Security for Cloud Applications

Los Altos, Calif. — Sept. 26, 2017 — Contrast Security, the first company to enable self-protecting software, today announced it has developed cloud-ready integrations..

Continue Reading >>

Struts 2, Equifax and You

It's hard to overstate what's happening here. The FBI, New York and Massachusetts Attorneys General, and Congress are now running inquiries into the Equifax breach. More will come. It's clear that the U.S. economy will change in some way as a result..

Continue Reading >>

A Week of Web Application Hacks and Vulnerabilities

Wow, what a week! Our industry is rippling from all the news surrounding the latest Struts 2 vulnerability and the possibility that another Struts vulnerability was also responsible for the Equifax hack. 

Continue Reading >>

VULNERABILITY ALERT: CVE-2017-9805 – Struts S2-052 Exploit Released, Protection Offered

On Tuesday, September 5, 2017, a critical new Remote Code Execution (RCE) vulnerability was disclosed against all previous versions of the Apache Struts 2 REST Plugin [1] available in those packages with Struts 2 between 2.0.0 and 2.5.12..

Continue Reading >>

Thoughts on Modern Security Practices and Security Frameworks

How have modern assets like cloud instances, web-based applications, mobile devices, application containers, and others affected your security and risk management program?

It's way past time for organizations to realize how ridiculous it is to..

Continue Reading >>

SHARING IS CARING. Share Software Security Data with Development Teams, SIEMs and much more.

Contrast integrates into your SDLC, and scales to your entire application portfolio and all your stakeholders.
Deliver Security Results into Tools Your Team Already Loves

Contrast shortens feedback loops between teams by delivering results..

Continue Reading >>

Contrast Security Recognized on 2017 Emerging Vendors List

I'm thrilled to announce that CRN®, a brand of The Channel Company, has named Contrast Security, the first company to enable self-protecting software, to its 2017 Emerging Vendors list in the Security category. This list recognizes recently founded,..

Continue Reading >>

SUBSCRIBE TO THE BLOG

Learn how to unify security strategy across & development operations. See how to set up a CAS program with only eight activities!

Download the Handbook