Category: Risk & Security

Are we really controlling OSS Risk across the organization or just ‘bailing water’?

CAST Highlight for Software Composition Analysis (SCA) helps control open source risks across all your applications and is operational in a few weeks

Nov 7, 2022

An Open Source Risk Sherpa

Open source software (OSS) has clearly become ubiquitous with over 70% of applications utilizing open source components according to Gartner. Although this is helping organizations dramatically reduce the time to market of delivering software, Common Vulnerabilities and Exposures (CVEs) within OSS components continue to be a significant risk. For example, the Heartbleed vulnerability affected over 66% of all active websites in the world with an estimated cost of almost $500 million to fix it.

Jun 27, 2022

Building an Open Source Control Tower for Your Application Portfolio

Nov 2, 2021

ISO 5055 and CAST MRI for Software

Does your software adhere to the new ISO 5055 standards? Learn how ISO 5055 is fully integrated with CAST MRI for Software to keep your software efficient and safe.

Jul 19, 2021

A Better Idea for Managing BFSI Open Source Software Risk

Business context of applications is crucial when assessing and prioritizing open source risk.

Alan Hanson & Greg Rivera

Apr 9, 2020

From Paris with Love: Building Responsible Software

Thales and LTI rely on CAST AIP to reduce technical debt and improve application security.

Mar 26, 2020

DXC Technology Partners with CAST to Provide Faster Migration to the Cloud

CAST Highlight now powers DXC Modernization studio enabling analytics based cloud migration

Guru Venkatachalam

Feb 27, 2020

Silent Application Killers: SQL Statements without Error Handling

Case study of application failure due to missing SQL error handling and how to avoid the same.

Guillaume Diamant

Jan 7, 2020

Apple Card: Five implications of the Apple and Goldman Sachs partnership

Lessons from the recent Apple-Goldman's innovative collaboration

Dec 19, 2019

False Positive in security – Why We Like to Cry Wolf

Beware of the unintended but often disastrous consequences of false positive in security

Dec 3, 2019

This Black Friday: Don’t Blame Outages on Your Infrastructure

Top 5 Potential Software Architecture & Code issues behind the Black Friday Outages

Kyle Christiansen

Nov 12, 2019

Explore software risk at object level and transaction level, download PCI report on compliance and several other new features in Dashboard 1.12 release

9 CAST AIP Dashboard's latest release features that you need to pay attention to.

Arkapravo Chakraborty

Nov 7, 2019

#1 in M&A Technology due diligence checklist - Application Portfolio Analysis

A technology due diligence checklist could have saved 40% M&As from failing

Oct 22, 2019

How data visualization makes it easier to manage open source risks and assess application portfolios for cloud migration

Check out CAST Highlight's latest release features

Oct 3, 2019

Juliet and OWASP Benchmark Results: How CAST Tests Against 2 Most Important Application Security Standards in 2019

Check out how CAST scores against these benchmarks and compares with other SAST solutions

Guillaume Rager

Oct 1, 2019

6 Best Software Productivity Measurements You Need to Implement (and 3 Worst You Need to Avoid) in 2019

Software measurement goals for 2019

Sep 24, 2019

What Vanity License Plates can Teach Us About App Security and SQL Injection

Two funny but relevant stories that highlight one of the most common SQL flaws

Guillaume Diamant

Sep 19, 2019

Warning! Business-critical systems left unattended

Are IT leaders prioritizing low impact apps for modernization

Aug 29, 2019

Open Source Software Risks : How to prioritize

What apps should you be focusing on?

Aug 27, 2019

Battle of the Banks: Legacy vs fintech

Is there a winner?

Aug 20, 2019

1 (current)
2
3
4
5
6
7