Skip to content

AppSec Observer

Contrast's application security blog provides the latest trends and tips in DevSecOps through instrumentation and security observability.

Subscribe Now
    Topics
    Trust ‘zero trust’ for Application Security

    Trust ‘zero trust’ for Application Security

    The perimeter cybersecurity model is like the defensive walls that surround ancient cities. For thousands of years,..

    3 reasons why upskilling the nation’s cybersec savvy won’t solve the skills gap

    3 reasons why upskilling the nation’s cybersec savvy won’t solve the skills gap

    The White House recently announced its new National Cyber Workforce and Education Strategy & Implementation (NCWES): a..

    Cybersecurity Insights with Contrast CISO David Lindner | 9/1

    Cybersecurity Insights with Contrast CISO David Lindner | 9/1

    Insight #1 There will never be an environment that is totally, 100% secure — at least, not one that provides any..

    Contrast Assess uncovers Spring-Kafka deserialization zero day

    Contrast Assess uncovers Spring-Kafka deserialization zero day

    Earlier in August, a Contrast Security customer reported what they initially thought was a false positive: a..

    Cybersecurity Insights with Contrast CISO David Lindner | 8/25

    Cybersecurity Insights with Contrast CISO David Lindner | 8/25

    Insight #1 When looking at bringing in new security products it’s imperative to clearly outline your goals, which..

    Legal liability for insecure software might work, but it's dangerous

    Legal liability for insecure software might work, but it's dangerous

    Ensuring security in the software market is undeniably crucial, but it is important to strike a balance that avoids..

    Cybersecurity Insights with Contrast CISO David Lindner | 8/18

    Cybersecurity Insights with Contrast CISO David Lindner | 8/18

    Insight #1 As an industry we need to move away from CVSS base score as the risk measuring stick. It doesn’t work and is..

    Cybersecurity Insights with Contrast CISO David Lindner | 8/11

    Cybersecurity Insights with Contrast CISO David Lindner | 8/11

    Insight #1 The Biden Administration's requirement for SBOMs has driven more and more organizations (76%) to have SBOM..

    Why OWASP’s CycloneDX will make you fall in love with SBOMs

    Why OWASP’s CycloneDX will make you fall in love with SBOMs

    It’s well-established: Triple-DES is a feeble encryption algorithm.