Application security pros need to keep up with what's happening in their field. Follow these savvy security practitioners to stay on top of things.
Templated content management systems and other dynamic web apps can allow attackers to remotely execute code. Here's how to prevent it.
Your API infrastructure needs to be fortified. Here's how to get your API security house in order.
The moral of the story? Politics aside, what’s running on your users’ work phones or BYO devices? Got MDM?
Know the answers to these five questions, or make it your business to learn them. The security of your deployment is at stake.
Here are 30 data points that provide a snapshot of the current state of application security.
The moral of the story? DevSecOps red-team exercises need to include OSINT from dorking, etc.
Here are four lessons from major breaches on how to catch the next seemingly small software bug, before it snowballs into a massive breach.
With the software development ground shifting, it's time to shift thinking from app sec after the fact to secure code from the start. Here's why.
Here's how to improve the maturity of your application security program, and expand your efforts throughout the company.