Skip to content

AppSec Observer: Thought Leaders

The latest trends and tips in DevSecOps through instrumentation and security observability. Learn about real-world insight and “in-the-trenches” experiences on topics ranging from application and information security to DevOps and risk management.

Subscribe to Blog
Cybersecurity Insights with Contrast CISO David Lindner | 5/13

Cybersecurity Insights with Contrast CISO David Lindner | 5/13

Insight #1 "I recently attended a conference and overheard a conversation where someone said, “Security by obscurity is..

Cybersecurity Insights with Contrast Security CISO David Lindner | 5/6

Cybersecurity Insights with Contrast Security CISO David Lindner | 5/6

Insight #1 "If your website authentication form prevents users from pasting in their password, or from using their..

CISO Thoughts with David Lindner - April 29

CISO Thoughts with David Lindner - April 29

Insight #1 "How do you measure risk between vulnerabilities in custom code vs vulnerabilities in third-party code? To..

Q&A: How Does the New Contrast Protect Class Loader Manipulation Rule Block Spring4Shell and Future Exploits?

Q&A: How Does the New Contrast Protect Class Loader Manipulation Rule Block Spring4Shell and Future Exploits?

 

CISO Thoughts with David Lindner - April 22

CISO Thoughts with David Lindner - April 22

Insight #1 " Another critical  Java zero-day was revealed in the last week. Turns out, the issue was originally..

CISO Thoughts with David Lindner - April 15

CISO Thoughts with David Lindner - April 15

Insight #1 "Again we had an instance where a CVE was not appropriately fixed and a year later a new CVE was released..

CISO Thoughts with David Lindner - April 8

CISO Thoughts with David Lindner - April 8

Insight #1 Every single CISO/CIO should realize their organization is building and using software. That being said,..

CISO Thoughts with David Lindner - April 1

CISO Thoughts with David Lindner - April 1

Insight #1 Spring4Shell, the latest vulnerability in a Java ubiquitous library is the second major vulnerability in the..

Cyber Incident Reporting For Critical Infrastructure Act of 2022

Cyber Incident Reporting For Critical Infrastructure Act of 2022

On March 15, 2022, United States President Joe Biden signed the Cyber Incident Reporting For Critical Infrastructure..