Featured
06/13/2024
Microsoft’s Brad Smith acknowledges past security failures, outlines new initiatives
Not everyone was as harsh on Microsoft’s previous mistakes. Jeff Williams, co-founder and chief technology officer at application security software platform provider Contrast Security Inc., noted that “while it’s pretty obvious in hindsight that they made a mistake, I think commentators are judging them without seeing the whole picture.”
“The unfortunate reality is that software is far more complex than most people understand,” he said. “A single application is built from dozens of source code repos, hundreds of open-source libraries, multiple application frameworks, server software and often multiple language platforms. And Microsoft has tens of thousands of applications, each of which has vulnerabilities reported all the time by tools, penetration testers, customers and more.”
05/09/2022
Case study: Scaling DevSecOps at Comcast
Comcast's DevSecOps transformation started small but quickly gained steam, resulting in 85% fewer security incidents in production. Learn more in this case study.
05/06/2022
What A Cybersecurity Shift-Left Means For SaaS Companies And Their Customers
That's software developer shorthand for moving a task to an earlier spot on the timeline, and it's what smart SaaS companies are now doing to protect themselves and their customers from cybercrime.
05/06/2022
Contrast Security named a ‘Major Player’ in the 2022 IDC MarketScape Report
IDC MarketScape has named Contrast Security a ‘Major Player’ in the 2022 IDC MarketScape: Worldwide Application Security Testing, Code Analytics, and Software Composition Analysis 2022 Vendor Assessment – Coordinating Security and Quality for Resilience and DevSecOps
05/06/2022
We’re on the cusp of a transformation where application security becomes visible to
In the near future, application security will be visible to customers and it will transform the market, says Jeff Williams, co-founder and CTO of Contrast Security.
05/05/2022
Data Theorem launches attack surface management product that identifies 3P assets & appsec violations
Data Theorem has launched what it’s calling the industry’s first attack surface management (ASM) product.
05/03/2022
GitHub Desktop 3.0 gets lukewarm reception
GitHub Desktop 3.0 introduces tools that make it easier for software developers to stay up to date with code changes. Some developers, though, are calling for more features.
05/03/2022
Organizations ramp up DevSecOps tools for optimum security
Every organization with a devops framework is expected to have a DevSecOps mindset for sustainability’s sake.
05/02/2022
Ep801: Jeff Williams | Co-Founder and Chief Technology Officer of Contrast
Jeff brings more than 20 years of security leadership experience as Co-Founder and Chief Technology Officer of Contrast.
05/01/2022
On Improving Security with Steve Wilson
Steve Wilson is the Chief Product Officer at Contrast Security, with over 25 years of experience developing and marketing products at multi-billion-dollar technology companies such as Citrix, Oracle, and Sun Microsystems.
04/28/2022
How to make DevSecOps a reality
Every AppSec leader recognizes and admits that software development is accelerating, and there’s no way their current approach is going to keep up.
04/07/2022
SpringShell Brings Hell to Java Developers
Logj4Shell brought a lot of misery, the newly discovered SpringShell vulnerability, not to be confused with the totally different Spring Shell project, may bring as much or even more. Here’s why.