If you're planning on migrating from Python 2, or any similar undertaking, here are key lessons from the developers at Dropbox.
Here are the skills every application security pro needs to get a better job—and a hefty bump in salary.
It’s time to consider phasing out Android phones that aren’t getting monthly security updates.
Defense in depth: Protect your session cookies, and do what you can to validate their use.
Rust has great potential for writing secure code—and refactoring old code to be more secure.
For IT: Use your MDM to find flawed phones in your fleet. For app developers: Trust, but verify.
Be on your guard, especially if your workloads share a physical server with other tenants' code.
Companies need to tackle vulnerabilities earlier, educate developers more, and deploy tools to automate the early discovery and remediation of flaws.
If software is eating the world, then security—or lack thereof—is eating software. That's why you need to pay attention to the API Security Top 10.
Defect density is not a good measure of an app sec health. Here's how my Application Security Health score can help.