Pointing out problems is not necessarily a bad thing. But simply pointing out problems without offering solutions provides little value. This is true in many facets of life, but it also applies within the context of software security scanning. security…
Colleges and Universities – the Next Big Target for Ransomware Attacks
The past few months have been witness to two massive ransomware attacks that have impacted organizations that are part of our country’s critical infrastructure – the attacks against the Colonial Pipeline Company and JBS, one of the country’s largest meat…
AppSec Takes Center Stage in Biden Cybersecurity Executive Order
On May 12, 2021, the Biden White House released an Executive Order focused on cybersecurity that it hopes will make significant strides in addressing one of the largest challenges that many of today’s federal government agencies and military organizations are…
Managing the Risks of Open Source Code
Most organizations with in-house development teams maintain their own code bases. Their developers write most of the code for those codebases themselves. However, they may choose to add third-party open source code to their codebases, for several reasons. The most…
DevSecOps and Security Automation – Making Application Security a Part of Development
In my previous article on the GovDevSecOpsHub, I examined the need for identifying and eliminating application-level cybersecurity vulnerabilities – such as those found in IaC and APIs – and explained why application security is becoming such a difficult challenge for…
Four Ways to Combat Developer Burnout
There is no lack of high-stress industries and occupations that have to battle against burnout and employee fatigue. They’re problems that face a number of jobs – from hospital staff to airline pilots. But, when you think about occupations that…
The Challenges of Open Source Software and How to Solve Them
This article was originally published on the Checkmarx Blog. To read the original article in its entirety, click HERE. Although software is significantly changing our work, home, and personal lives, many don’t realize that today’s software is made up of…