Skip to content

AppSec Observer

Contrast's application security blog provides the latest trends and tips in DevSecOps through instrumentation and security observability.

Subscribe Now
    Topics
    October attack data: The Expression Language injection attacks that skipped past SAST/DAST/WAFs

    October attack data: The Expression Language injection attacks that skipped past SAST/DAST/WAFs

    Today we’re taking a deep dive into Contrast Security’sApplication Detection and Response (ADR) data for the month of..

    Preparing for PCI DSS v4.0.1, the latest version of PCI

    Preparing for PCI DSS v4.0.1, the latest version of PCI

    The deadline to comply with the latest version of the Payment Card Industry Data Security Standard (PCI DSS), v4.0.1,..

    Cybersecurity Insights with Contrast CISO David Lindner | 11/1/24

    Cybersecurity Insights with Contrast CISO David Lindner | 11/1/24

    Insight #1: You can be sued for your junky software, EU says The EU recently updated its Product Liability Directive..

    If only I’d known ADR was possible when I was a SOC analyst!

    If only I’d known ADR was possible when I was a SOC analyst!

    Paged at 3 a.m. again … we had another breach to respond to in the security operations center (SOC). While the incident..

    Cybersecurity Insights with Contrast CISO David Lindner | 10/25/24

    Cybersecurity Insights with Contrast CISO David Lindner | 10/25/24

    Insight #1: Chuck the checkbox, seize real risk To achieve a strong security posture, CISOs must avoid a "checkbox..

    Bringing the application layer into cybersecurity monitoring and response

    Bringing the application layer into cybersecurity monitoring and response

    At long last, there’s a spotlight — Application Detection and Response (ADR) — that shines the light into what’s been a..

    Cybersecurity Insights with Contrast CISO David Lindner | 10/18/24

    Cybersecurity Insights with Contrast CISO David Lindner | 10/18/24

    Insight #1: Data breach costs are climbing According to IBM’s latest Cost of a Data Breach report, data breach costs..

    Wake up, CISOs: You need an ADR flashlight to see into critical application blindspots

    Wake up, CISOs: You need an ADR flashlight to see into critical application blindspots

    Good cyber defense involves more than blocking and tackling. Without visibility into what’s happening, where and by..

    September attack data: Spotlight on path traversal, one of the gnarliest application attack types

    September attack data: Spotlight on path traversal, one of the gnarliest application attack types

    The Contrast Security Runtime Security Platform — the engine driving Contrast’s Application Detection and Response..