Skip to content

AppSec Observer: Application Security (9)

Contrast's application security blog provides the latest trends and tips in DevSecOps through instrumentation and security observability.

Subscribe Now
    Topics
    Integrations Make Managing AppSec Even Easier!

    Integrations Make Managing AppSec Even Easier!

    At Contrast Security, we believe that application security should be pervasive and transparent. Application security..

    Can Openness in the US Government Lead to Better Application Security?

    Can Openness in the US Government Lead to Better Application Security?

    On Tuesday morning, ZDNet reported that U.S. government has published a new federal policy that aims to encourage more..

    when-all-you-have-is-a-hammer-everything-looks-like-a-vulnerability.jpg

    With Only a Hammer, Everything Looks Like a Security Vulnerability!

    Did you know that most security vulnerabilities are simply the result of failing to use the right security control in..

    crying-wolf-the-true-cost-of-false-positive-vulnerabilities-1.jpg

    The True Cost of "False Positives" in Application Security

    Remember the story of the boy who cried wolf? His pranks were "false alarms" - defined as "a mistaken or intentionally..

    Pokemon_Go_Security_fail.jpg

    Security Fail in Pokémon Go

    As you may have heard, some Pokémon Go players may have given the game’s developers access to everything on their..

    Third category of application security tools beyond

    Third category of application security tools beyond "static" and "dynamic"?

    Recently, Clark Coleman asked a very logical question about application security tools.

    Waiter… there’s a fly in my appsec tool soup!!!

    Waiter… there’s a fly in my appsec tool soup!!!

    Brace yourself. Recent advances in application security are about to spawn an onslaught of application security tool..

    How to Get Started in Application Security

    How to Get Started in Application Security

    My OWASP Cheat Sheet for Cross-site Scripting (XSS) just passed 1M views, and I'm proud of that. It ain't Shakespeare,..

    pov-hero

    Why the Java serialization vulnerability makes Heartbleed look tame - explained

    I've been receiving questions from some of you to provide a bit more detail on why this Java vulnerability is so..

    Prev 7 8 9 10 11 Next