Application Security July 17, 2023

The top 10 API security risks OWASP list for 2023

5 min read - As more organizations rely on the automation and scale that web applications and connected services provide, application programming interface (API) security has become imperative. In just the last year alone, unique attackers targeting customer APIs grew by 400%, proving that…

Cloud Security January 18, 2022

3 Cloud Security Trends to Watch in 2022

3 min read - Many organizations have cloud security on their minds going into 2022. In April 2021, for instance, Gartner predicted that global end-user spending on cloud management and security services would reach $18 million the following year. That’s a growth of 30%…

Incident Response December 3, 2021

What the Internet Bug Bounty Teaches About Open-Source Software Security

4 min read - The security platform HackerOne recently announced the latest version of their Internet Bug Bounty (IBB) program. The IBB strives to enhance open-source software security by pooling resources and encouraging security experts (they call themselves hackers) to find flaws in open-source…

Application Security December 3, 2021

Data Security: Defending Against the Cache Poisoning Vulnerability

6 min read - Do you trust your cache? To meet the demands of the end-users and speed up content delivery, content caching by web servers and content delivery networks (CDN) has become a vital part of the modern web. To explain how this…

Data Protection November 1, 2021

What’s New in the OWASP Top 10 2021?

4 min read - In early September, we published a piece about the OWASP top 10. At that time, the most prominent vulnerabilities on the list had not yet changed. Soon after we posted the article, OWASP updated the list with three new categories.…

Zero Trust September 1, 2021

The OWASP Top 10 Threats Haven’t Changed in 2021 — But Defenses Have

5 min read - The more things change, the more they stay the same. Despite a changing threat landscape and threat actors who keep upping their game, the vulnerabilities behind the threats remain consistent. The OWASP Top 10, ranked by the Open Web Application…

Application Security April 28, 2015

Software Defenses to OWASP’s Top 10 Most Common Application Attacks

6 min read - Software developers must learn how to build security in from the ground up to defend against the most common application attacks, as determined by OWASP.

Software Vulnerabilities April 8, 2015

The 10 Most Common Application Attacks in Action

4 min read - Based on OWASP's list of the 10 most common application attacks, IBM has created a video series highlighting each one and how organizations can stay safe.

Intelligence & Analytics September 17, 2014

How the Internet of Things (IoT) Is Changing the Cybersecurity Landscape

3 min read - Privacy is a significant concern in the Internet of Things. It is already changing the security landscape and exponentially expanding the attack surface.

Application Security June 18, 2014

How to Shift Your Application Security Approach to Improve Your Return

4 min read - How to transition from a "fire-fighting" to a "fire prevention" application security strategy and improve your financial return.