software development Archives - Help Net Security

software development

How do DevSecOps professionals feel about security becoming an around the clock job?

May 19, 2022

As breaches continue to rise, cybersecurity and development professionals are feeling the pressure to maintain their organizations’ security postures. Invicti Security …

U.S. warns of North Korean hackers posing as IT freelancers

May 18, 2022

Companies and other organizations should be careful when employing IT freelancers, lest they end up hiring North Korean hackers. The advice comes from the U.S. Department of …

How to make DevSecOps a reality

April 28, 2022

Every AppSec leader recognizes and admits that software development is accelerating, and there’s no way their current approach is going to keep up. It is much better to …

Are businesses ready to implement cloud-native development?

April 28, 2022

OutSystems released findings from a global survey of IT leaders and developers gauging the benefits and challenges of cloud-native development, with results highlighting stark …

Principles for Kubernetes security and good hygiene

April 26, 2022

Traditional methods of software security are not a good fit for Kubernetes: a renewed set of security implementations are required to make it less vulnerable. What’s …

Challenges development teams face when building applications with open source

April 20, 2022

Tidelift released a report providing critical insights into the state and practice of open source software supply chain management. This comprehensive study of nearly 700 …

81% of codebases contain known open source vulnerabilities

April 19, 2022

Synopsys released a report which examines the results of more than 2,400 audits of commercial and proprietary codebases from merger and acquisition transactions, and …

86% of developers don’t prioritize application security

April 7, 2022

Secure Code Warrior released findings from its survey, which found that developers’ actions and attitudes toward software security are in conflict. While many developers …

How often do developers push vulnerable code?

April 6, 2022

A Tromzo report reveals developers remediate only 32% of vulnerabilities and regularly push vulnerable code. The report was based on a survey of more than 400 U.S.-based …

What you need to look out for when installing packages from public repositories

April 5, 2022

In this Help Net Security video, Ax Sharma, Senior Security Researcher at Sonatype, talks about the risks posed by malicious open source packages. Malicious packages can harm …

Spring4Shell: New info and fixes (CVE-2022-22965)

April 1, 2022

In this video for Help Net Security, Ax Sharma, Senior Security Researcher at Sonatype, talks about the latest developments regarding Spring4Shell, the unauthenticated RCE …

Where should companies start when it comes to device security?

March 31, 2022

The Internet of Things (IoT) market has a security problem that is boiling over into a business issue. According to a recent survey conducted by the Ponemon Institute, 59% of …