Featured
06/13/2024
Microsoft’s Brad Smith acknowledges past security failures, outlines new initiatives
Not everyone was as harsh on Microsoft’s previous mistakes. Jeff Williams, co-founder and chief technology officer at application security software platform provider Contrast Security Inc., noted that “while it’s pretty obvious in hindsight that they made a mistake, I think commentators are judging them without seeing the whole picture.”
“The unfortunate reality is that software is far more complex than most people understand,” he said. “A single application is built from dozens of source code repos, hundreds of open-source libraries, multiple application frameworks, server software and often multiple language platforms. And Microsoft has tens of thousands of applications, each of which has vulnerabilities reported all the time by tools, penetration testers, customers and more.”
02/03/2022
Automating Application Security Effectively | CISO Talks
This episode of CISO Talks delves into the realms of application security automation and how to improve its effectiveness with advice from an industry expert.
02/03/2022
Contrast Security partners with GitHub to deliver pipeline-native security to developers
Contrast Security announced its partnership with GitHub and the availability of its suite of GitHub Actions.
02/02/2022
Contrast Security Partners with Github
Contrast Security announced its partnership with GitHub and the availability of its suite of GitHub Actions.
02/02/2022
DevSecOps: How to Change Old Behaviors
Contrast Security's Larry Maccherone on How to Incentivize Development Teams to Evolve.
01/06/2022
What app developers need to do now to fight Log4j exploits
Why you may already be at risk, how to detect and mitigate the Log4j vulnerabilities now, and how to improve your code security in the future.
01/06/2022
Insider threats, supply chain attacks and quantum threats -- enterprise security predictions for 2022
The transition to remote and hybrid working has led enterprises to radically revise the way they operate. This has thrown up a variety of new challenges in ensuring systems remain secure.
.jpg)
01/03/2022
How Cybersecurity Can Keep Up With Waves Of Innovation
CTO and Co-Founder of Contrast Security — helping companies become truly great at securing their apps and APIs.
01/03/2022
Application Security in a Time of Cloud
Application security matters because the entire role of virtual machines and containers is to run their application workload.
12/29/2021
Contrast Security Reveals The Log4j Attack’s Effects On Global Enterprises
The code security specialists at Contrast deliver an update on the most severe software vulnerability in history.
12/24/2021
SD Times Open-Source Project of the Week: SafeLog4j
SafeLog4j is an open-source tool that can detect and verify vulnerable Log4j applications and protect them.
12/21/2021
CSCP S03EP00 - Steve Wilson - Nightmare On Christmas Eve
Steve Wilson is an Application Security expert development manager and currently and currently the head of product at Contrast.
12/17/2021
What to Do While Waiting for the Log4J Updates
Researchers are warning that attackers are actively exploiting the newly publicized unauthenticated remote code execution vulnerability in Log4j, the Java-based logging tool from Apache.