software development Archives - Help Net Security

software development

70% of apps contain at least one security flaw after 5 years in production

January 13, 2023

Veracode revealed data that could save organizations time and money by helping developers minimize the introduction and accumulation of security flaws in their software. Their …

OSV-Scanner: A free vulnerability scanner for open-source software

December 14, 2022

After releasing the Open Source Vulnerabilities database (OSV.dev) in February, Google has launched the OSV-Scanner, a free command line vulnerability scanner that open source …

How to improve secure coding education

November 16, 2022

Did you know that not one of the top 50 undergraduate computer science programs in the U.S. requires a course in code or application security for majors? Yet the threatscape …

Critical vulnerability in Spotify’s Backstage discovered, patched

November 15, 2022

A critical unauthenticated remote code execution vulnerability in Spotify’s Backstage project has been found and fixed, and developers are advised to take immediate action in …

Following Log4j: Supporting the developer community to secure IT

November 1, 2022

How bad was the Log4j vulnerability for open source’s reputation? One of the most high-profile exploits in recent years, it even led to a government advisory from the UK’s …

What developers want and how to keep them on your team

November 1, 2022

OutSystems released a new developer jobs report identifying the factors that motivate them to stay with their companies and the frustrations that drive them away. The report, …

Risk management focus shifts from external to internal exposure

September 23, 2022

Coalfire released its fourth annual Securealities Penetration Risk Report which analyzes enterprise and cloud service providers (CSPs) internal and external attack vectors, …

How can organizations benefit from full-stack observability?

September 20, 2022

New Relic published the 2022 Observability Forecast report, which captures insights into the current state of observability, its growth potential, and the benefits of …

Developers are struggling to keep up with ongoing security activities

September 15, 2022

Security Compass has published the results of a research study examining developer views on application security, including the challenges and opportunities they face in their …

Backlogs larger than 100K+ vulnerabilities but too time-consuming to address

September 15, 2022

Rezilion and Ponemon Institute announced the release of “The State of Vulnerability Management in DevSecOps,” which reveals that organizations are losing thousands of hours in …

What’s challenging development teams amid their race to the cloud?

September 14, 2022

Couchbase announced findings from industry research examining the challenges faced by development teams amid the race to the cloud and to execute on digital transformation …

Development of secure software now an imperative for global DevOps teams

September 1, 2022

GitLab released the results of its annual DevSecOps survey which highlights the continued prioritization of security and compliance, investment in toolchain consolidation, and …