ShiftLeft Archives - Page 2 of 3

ShiftLeft

Increasing speed of vulnerability scans ultimately increases security fixes overall

August 6, 2021

Next-generation static application security testing (SAST) and intelligent software composition analysis (SCA) can increase the speed of vulnerability scans and narrow their …

OpenSSF adds new members from around the globe to improve OSS security

July 31, 2021

OpenSSF announced new membership commitments to advance open source security education and best practices. New members include Accurics, Anchore, Bloomberg Finance, Cisco …

ShiftLeft Educate provides consistent and contextual training for developers of different skill levels

July 19, 2021

ShiftLeft announced general availability of ShiftLeft Educate, a solution that delivers highly-effective security training for developers within the developer workflow. …

New infosec products of the week: June 18, 2021

June 18, 2021

deepwatch MOBILE gives cybersecurity experts real-time visibility into their SOC deepwatch MOBILE provides customers real-time insight into their Security Operations Center …

ShiftLeft allows users to validate the accuracy of ShiftLeft CORE using OWASP Benchmark

June 15, 2021

ShiftLeft has released a tool enabling businesses to independently benchmark and validate the accuracy of ShiftLeft CORE using the Open Web Application Security Project …

The basics of security code review

May 19, 2021

With staffing ratios often more than 200 developers for every AppSec professional, scaling security requires increasing the developer’s engagement in securing the product. To …

Digital business requires a security-first mindset

April 19, 2021

Security is an undeniable necessity for the survival and success of any company. COVID-19 accelerated digital transformation initiatives across all industries and this shift …

ShiftLeft CORE: A unified code security platform

April 9, 2021

ShiftLeft introduced ShiftLeft CORE, a unified code security platform. Powered by ShiftLeft’s Code Property Graph (CPG) engine, the ShiftLeft CORE platform features NextGen …

The growing threat to CI/CD pipelines

April 1, 2021

Before the pandemic, most modern organizations had recognized the need to innovate to support developers’ evolving workflows. Today, rapid digitalization has placed a …

ShiftLeft Illuminate reduces risk to organizations’ software code base

February 19, 2021

ShiftLeft released ShiftLeft Illuminate, a new solution that leverages ShiftLeft technology to identify insider attacks, offer remediation advice and reduce overall risk to …

Most containers are running as root, which increases runtime security risk

January 14, 2021

While container usage reveals organizations are shifting left by scanning images during the build phase, DevOps teams are still leaving their environments open to attack, …

Transitioning from vulnerability management to vulnerability remediation

December 29, 2020

Like many people, I’m glad 2020 is almost over. I am, however, excited about 2021. Here are three trends I believe will impact how well (or not) companies will be able to …

ShiftLeft

Increasing speed of vulnerability scans ultimately increases security fixes overall

OpenSSF adds new members from around the globe to improve OSS security

ShiftLeft Educate provides consistent and contextual training for developers of different skill levels

New infosec products of the week: June 18, 2021

ShiftLeft allows users to validate the accuracy of ShiftLeft CORE using OWASP Benchmark

The basics of security code review

Digital business requires a security-first mindset

ShiftLeft CORE: A unified code security platform

The growing threat to CI/CD pipelines

ShiftLeft Illuminate reduces risk to organizations’ software code base

Most containers are running as root, which increases runtime security risk

Transitioning from vulnerability management to vulnerability remediation

Don't miss

Apple backports fix for exploited WebKit bug to older iPhones, iPads (CVE-2023-23529)

Europol details ChatGPT’s potential for criminal abuse

What you need before the next vulnerability hits

Running a security program before your first security hire

What the food and building industry can teach us about securing embedded systems