Contrast Security

Spring4Shell: No need to panic, but mitigations are advised
Security teams around the world got another shock on Thursday when news of disclosure of a PoC for an unauthenticated RCE zero-day vulnerability in Spring Core, a massively …

Contrast Security works with global businesses to build overall security readiness and resilience
Contrast Security announced its commitment to ally with and protect customers during the current state of heightened cybersecurity risks, as the Russia-Ukraine conflict …

New infosec products of the week: March 18, 2022
Here’s a look at the most interesting products from the past week, featuring releases from Actiphy, Ciphertex Data Security, Contrast Security, Deepfence, Ostrich Cyber-Risk, …

Contrast Security adds software supply chain security capabilities to its Secure Code Platform
Contrast Security announced that its Secure Code Platform now integrates software supply chain security across the development lifecycle, from the developer desktop to …

Contrast Security partners with GitHub to deliver pipeline-native security to developers
Contrast Security announced its partnership with GitHub and the availability of its suite of GitHub Actions, simplifying the process for developers to ensure the code they …

Critical RCE 0day in Apache Log4j library exploited in the wild (CVE-2021-44228)
A critical zero-day vulnerability in Apache Log4j (CVE-2021-44228), a widely used Java logging library, is being leveraged by attackers in the wild – for now, …

Contrast Security raises $150M to advance application security
Contrast Security announced that it has closed $150M in a Series E round of funding at a greater than billion-dollar valuation. The oversubscribed round was led by Liberty …
Contrast Security partners with Secure Code Warrior to deliver security training for developers
Contrast Security announced its integration with Secure Code Warrior to deliver just-in-time security contextual micro-learning modules to enhance developers’ skills to …
Secure Code Warrior enhances partner program, extends DevSecOps vendors integrations
At its inaugural Global Partner Virtual Summit, Secure Code Warrior announced significant enhancements to its global partner program, as well as expanded integrations with …

Application security not a priority for financial services institutions
Contrast Security announced the findings of a report based on a comprehensive survey of development, operations, and security professionals and executives at enterprise-level …
Dasera appoints David McCaw as VP of Sales
Dasera announced the appointment of cybersecurity veteran David McCaw to the position of Vice President, Sales. In today’s cloud-first environments, data sprawl is …

New infosec products of the week: March 20, 2020
HYAS Insight: A threat intelligence solution for investigation and attribution HYAS Insight is a threat intelligence and attribution solution that improves visibility and …
Featured news
Sponsored
Don't miss
- Meta introduces default end-to-end encryption for Messenger and Facebook
- New RCE vulnerability in Apache Struts 2 fixed, upgrade ASAP (CVE-2023-50164)
- December 2023 Patch Tuesday forecast: ‘Tis the season for vigilance
- Aim for a modern data security approach
- Short-term AWS access tokens allow attackers to linger for a longer while