Tag: AppSec

How Software Intelligence Can Close the Security Gap in Software Development.
Secure Software Development: Error Sends UK’s NHS ‘Once More into the Breach’
Making a case for DevSecOps
A Case for DevSecOps
To shift even further left, security and development teams should consider architectural blueprinting to build security into design.
Application Security: Next-Gen Security Includes Architectural Blueprinting
Application security postures must be multi-tiered and aligned with corporate software risk postures for optimal effectiveness.
Takeaways from ESRM: Not All AppSec Programs Are Created Equal
Ensuring secure software design starts with building a secure architecture.
Application Security: Smart Software Design Techniques to Shift Left
A tune-up may not be enough to help organizations adhere to MGT Act 101 to deliver secure and sustainable modernized systems.
Government Agencies and IT Modernization: What Will Propel the Great Leap Forward?
Step one? Improve your diet. The second? Make sure the software that runs your business is prepared to take on the road ahead.
3 Ways Startups Can Transform Software Intelligence Into an IPO
Follow these best practices for better data protection, more accurate security analysis and confident decision making.
Application security: 2 Steps to Improve Your Secure Engineering
La sostenibilità è nella Software Intelligence strutturale
GDPR e Cybersecurity By Design
It doesn’t matter how many days removed we are from sipping champagne, singing "Auld Lang Synge" and making New Year’s resolutions, we still need to look back at 2017, lest we repeat the same mistakes we've already made.
2017: The Year of MotS (More of the Same)
CAST provides continuous support for OWASP Top Ten vulnerabilities, providing users with an automated validation of protection. This helps development teams detect places where vulnerabilities are left in code.
Application Security Vulnerability Detection
Fashion retailer Forever 21 joined a very trendy, yet unexclusive club earlier this month when it announced its point-of-sales systems may have been breached. This blog examines how to integrate automated code review into application security strategies.
Don’t Be ‘Forever’ Vulnerable: Improve Your AppSec Posture
At the upcoming Matinée CIO event in Paris, CAST, along with select partners and customers, will address challenges and best practices for digital transformation initiatives, including compliance, cloud migration, application security and establishing an Agile culture.
CAST Talks AppSec, Compliance and Digital Transformation at Matinée CIO
Cybersecurity is a hot-button issue these days. You can barely go a few weeks without hearing about a company suffering a breach that puts the business at risk. With all eyes focused on making software more secure, a happy side effect might just be a streamlining of software modernization initiatives.
Will Cybersecurity Efforts Change the Game for Software Modernization?
The Open Web Application Security Project (OWASP) aims to make software security visible, so that individuals and organizations are able to make informed decisions. OWASP provides impartial, practical information about AppSec. This post reviews known OWASP vulnerabilities detected by CAST's software analysis.
Application Security Vulnerabilities Detectable by CAST
When you are a consumer credit company, victimized recently by a serious security breach where hackers exploited an application vulnerability to steal the personal information of roughly 143 million people, what do you do for an encore? For Equifax, the encore may be “get hacked a second time.”
An Encore for Equifax?
Knowing the difference between true positives and false positives for Application Security Testing.
Reduce False Positives in Application Security Testing
How to choose the right security solution for your AppSec Strategy.
SAST, DAST and IAST - What's the Difference?