NIST proposes Secure Software Development Framework

cyber-security-framework

Ever since Bill Gates fired off his famous Trustworthy Computing memo in January 2002, developing secure software has been a hot topic of discussion. It was important before then, for sure, but it was often overlooked. It took a series of high-profile worms such as Code Red and Nimda and a series of breaches to […]

Comment les tests de sécurité d’applications doivent changer dans un monde DevOps world agile

security-text-on-screen

Dans le contexte actuel de la cyber sécurité, il est essentiel d’élaborer une stratégie de sécurité qui couvre tous les angles d’attaque. Les entreprises doivent en permanence évaluer leur niveau de préparation et améliorer la gestion et les processus pour avoir toujours un coup d’avance sur des individus mal intentionnés. Les applications sont une des […]

How application security testing needs to change in an agile, DevOps world

security-text-on-screen

In today’s dynamic cyber-attack landscape, a robust security strategy that looks at all attack surfaces is critical. Enterprises must tirelessly assess their current state of readiness and continually improve governance and processes to stay a step ahead of malicious actors. Applications are one of the preferred attack vectors with up to 90% of successful breaches […]

The letterbox problem with voicebox assistants

There are lots of voice activated tools and services now available from software on your PC and in your car to physical hardware you can place around your home. These devices and associated requests are becoming everyday occurrences, “Alexa, whats the weather” to“Siri, recipe for Chocolate Cake” (too many to list). The two main ways to […]