6 min read - How secure will your codebase be? The best predictor is your organizational complexity. Here's why—and what to do about it.
5 min read - Don't assume any code is safe. Zero trust is how you ensure that only approved code can access sensitive information. 
6 min read - If you're planning on migrating from Python 2, or any similar undertaking, here are key lessons from the developers at Dropbox.
6 min read - Here are the skills every application security pro needs to get a better job—and a hefty bump in salary.
5 min read - It’s time to consider phasing out Android phones that aren’t getting monthly security updates.
5 min read - Defense in depth: Protect your session cookies, and do what you can to validate their use.
6 min read - Rust has great potential for writing secure code—and refactoring old code to be more secure.
5 min read - For IT: Use your MDM to find flawed phones in your fleet. For app developers: Trust, but verify.
6 min read - Be on your guard, especially if your workloads share a physical server with other tenants' code.
5 min read - Companies need to tackle vulnerabilities earlier, educate developers more, and deploy tools to automate the early discovery and remediation of flaws.