Getting rid of a 20+ year old known vulnerability: It’s like a PSA for Runtime Security
On Wednesday, March 27, CISA and the FBI issued a cry for help: We need to stamp out SQL injection vulnerabilities, and we need to do it yesterday, they said in a joint Secure by Design alert aimed at any and all software manufacturers that continue to develop products with ... Read More
What does security instrumentation do for Application Security? A basketball analogy | Contrast Security
It's not just any basketball — it’s a sensor-packed basketball called the 94Fifty. ... Read More
Replace broken AppSec tools with an Application Security technology that actually works: Runtime Security
Tell us straight, Santa: Where did these old-school Application Security (AppSec) tools come from? Did you get the Security Specialist Elves to cobble them together from toadstool scrapings and cobwebs? ... Read More
Contrast Security recognized in the 2023 Gartner® AppSec Testing Voice of the Customer report
The 2023 Gartner Peer Insights™ “Voice of the Customer”: Application Security Testing report has recognized Contrast Security as garnering approval from most customers, with 94% of Contrast customers being willing to recommend its Secure Code Platform, the company announced today. ... Read More
Don’t Waste Budget on Application Security (AppSec) Testing Tools like DAST, SAST, and SCA that Aren’t Working | Contrast Security
From the “How does this make sense?” department comes this finding: The more they get breached, the more likely it is that firms plan to throw money at Application Security (AppSec). … as in, the technology that should have protected them in the first place. ... Read More
MTTR Cyber Security Metrics | How to Reduce MTTR with Runtime Security | Contrast Security
Let’s say your mean time to respond/remediate (MTTR) security issues is 60 days. ... Read More
Find True Positives, vs False Positives, with Runtime Security | Contrast Security
Alert: Somebody’s running reconnaissance on your network. Alarm: You’ve got a malware infection. ... Read More
Four things CISOs should do NOW to protect from being scapegoated
On Oct. 30, the Securities and Exchange Commission (SEC) charged SolarWinds and its former Chief Information Security Officer — Timothy G. Brown — in a 68-page complaint alleging that the company and its then security head defrauded investors and customers through “misstatements, omissions and schemes that concealed both the company’s ... Read More
What is Security Observability? | Contrast Security
Just what, exactly, is “security observability?” ... Read More
Cybersecurity Awareness Month: How Contrast & the threat landscape have evolved
This year marks the 20th year for Cybersecurity Awareness Month (CSAM), and the National Cybersecurity Alliance (NCA) marked it by extending its typically month-long campaign to raise awareness about digital security to a full year, with a new, year-round awareness campaign and an evergreen theme cooked up by the Cybersecurity ... Read More