Amid a spike in attacks on software supply chains, GitGuardian launched HasMySecretLeaked.com, a site that allows developers and appsec teams to search for exposed secrets.
software development
Attacks on APIs demand a Security Re-Think
New threats demand that we transform the way we think about securing the endpoints. Case in point: APIs, writes Ross Moore.
Leonardo DRZ wins first ever TCG CodeGen Developer Challenge
President and Chairman of Trusted Computing Group (TCG), Dr. Joerg Borchert, shares the news regarding TCG’s first ever CodeGen Developer Challenge.
As Mobile Fraud Rises, The Password Persists
A new study released by Incognia that measures user friction in mobile financial apps yields important results about the fate of the password.
What SolarWinds Tells Us About Securing the Software Development Supply Chain
The recent SolarWinds attack highlights an Achilles heel for enterprises: software updates for critical enterprise applications. Digital signing of code is one solution, but organizations need to modernize their code signing processes to prioritize security and integrity and align with DevOps best practices, writes Brian Trzupek the Senior Vice President of Products at DigiCert in this thought leadership article.