When it comes to application security (AppSec), Forrester’s report, The State of Government Application Security, 2020,  establishes that the government sector is falling behind other industries. And given the nature and quantity of consumer information housed by government agencies,…

On April 17, 2020, The Massachusetts Attorney General, Maura Healey, announced that Massachusetts will receive a payout of $18.2 million in the settlement against Equifax Inc. The settlement, which was approved in a judgment on April 13, 2020, is in response to the 2017 data breach in which…

Cyberattacks are an all too common occurrence, especially for financial institutions. In response, we are seeing an influx of security rules and regulations for financial institutions to follow. And – although the regulations are beneficial – complying with the regulations can be time consuming and…

In a recent podcast with IDG, Chris Wysopal, Veracode Chief Technology Officer, speaks to the evolution of application security (AppSec) over the past ten years. In his evaluation, Wysopal leverages findings from Veracode’s annual State of Software Security (SOSS) reports. The first volume of the…

In order to stay competitive in today’s fast-past world, organizations need to rapidly deploy new software. One way to ensure fast deployment is to take Beyoncé’s advice and move security, “to the left, to the left.” By shifting security left – to the beginning of the software deployment lifecycle…

When determining the right testing types for your application security (AppSec) program, there are several questions that likely come to mind: What is the difference between the various AppSec tests? What vulnerabilities do the tests uncover? How many testing types do I need to include in my…