Skip to content

AppSec Observer: Threat (3)

Contrast's application security blog provides the latest trends and tips in DevSecOps through instrumentation and security observability.

Subscribe Now
    Topics
    Screen Shot 2019-10-17 at 1.15.28 PM

    September 2019 APPSEC INTELLIGENCE REPORT

    This report summarizes Contrast Labs' analysis of real world application attack and vulnerability data from September..

    August Image 1

    August 2019 AppSec Intelligence Report

    This report summarizes Contrast Labs' analysis of real world application attack and vulnerability data from August..

    July 2019 AppSec Intelligence Report: Attack Edition

    July 2019 AppSec Intelligence Report: Attack Edition

    July 2019 AppSec Intelligence Report: Attack Edition

    June 2019 AppSec Intelligence Report: Attack Edition

    What is this report: This report summarizes Contrast Labs' analysis of real world application attack data from June..

    ProtectSettings

    Using Contrast to prevent the Weblogic Remote Code Execution (RCE) Deserialization Vulnerability - CVE-2019-2725

    On April 17, 2019, Oracle released a Critical Patch Advisory with 254 patches. One of the vulnerabilities addressed was..

    Privilege Escalation in Popular Blogging Platform

    Ghost is a popular open source blogging platform written in Node.js. It is downloaded around 8,500 times a week..

    CVE-2018-11776 Struts2

    CVE-2018-11776 Struts2

    Contrast and Struts2 CVE-2018-11776 On August 22, a new CVE and exploit appeared for the Struts2 web application..

    Screen Shot 2018-04-12 at 8.14.40 PM

    CONTRAST LABS: March 2018 AppSec Threat Intelligence Report

    Contrast Labs' analysis of real world application security data from March 2018. We're going to change it up a bit this..