developers
GitHub Vulnerability Put Code Packages at Risk of Repojacking
A new vulnerability found in GitHub’s operations could have given bad actors another way of getting around the code hosting platform’s security protections and exposing thousands of code packages to being hijacked ...
National Cybersecurity Strategy Requires Orgs to Rethink Software Quality
Software development is a global effort, with DevOps teams often dispersed around the world. According to Statista, there will be over 27.7 million developers worldwide in 2023. That’s a lot of engineers creating ...
Augmented Software Engineering in an AI Era
Artificial Intelligence (AI) has been making waves in many industries, and software engineering is no exception. AI has the potential to revolutionize the way software is developed, tested, and maintained, bringing a ...
Debunking Three Common Threat Modeling Myths
The benefits of threat modeling are significant. Not only does it provide a systematic process for evaluating potential threats to an organization’s system, but it also creates a framework for informed decision-making, ...
LoginRadius Launches a CLI for Enterprise Dashboard
We are happy to announce that we have launched LoginRadius CLI for enterprise dashboard ...
New Contrast Learning Hub and Community Platform | Blog
The 2022 Forrester Research survey, “Breaches By The Numbers: Adapting To Regional Challenges Is Imperative,” found that 63% of organizations were breached in the past year. It also showed that attackers are ...
Facebook Doesn’t Know Where Your Data Is, New Hire Spearmishing Attack, Smart Thermostat Lock Out
In recent court testimony two Facebook engineers were asked what information, precisely, does Facebook store about us, and where is it? Surprisingly they said, they don’t know. Details on how brand new ...
The State of Application Security with Tanya Janca
Tanya Janca, founder of the We Hack Purple Academy, Director of Developer Relations and Community at Bright, and author of “Alice & Bob Learn Application Security” joins us to discuss the current ...
Java JEP’dy. Sometimes you just have to let your hair down.
I’ve been at Sonatype for a few months and it’s been quite the roller coaster. A stupid amount of fun as we grow the DevReal team, figure out what’s important, what’s not ...
20 Statistics That Today’s DevSecOps Teams Should Know
In a recent report, leading analyst firm Gartner predicted that the Public Cloud Services Market will continue to gain steam, reaching $397.4B by 2022. This is surely due, in part, to the ...