vulnerabilities Archives - Developer Tech News

David DeSanto, GitLab: AI’s impact on software development in 2024

Ryan Daws — Thu, 07 Dec 2023 15:18:37 +0000

David DeSanto, Chief Product Officer at GitLab, foresees a paradigm shift in the realm of software development in 2024—with AI taking centre stage. GitLab’s 2023 Global DevSecOps Report serves as the foundation for these predictions, offering a glimpse into the future landscape of organisations’ software development toolchains. AI bias: A hurdle on the path to... Read more »

The post David DeSanto, GitLab: AI’s impact on software development in 2024 appeared first on Developer Tech News.

PHP 8.0 reaches EOL leaving some websites vulnerable

Ryan Daws — Mon, 27 Nov 2023 12:43:31 +0000

PHP 8.0 reached its end of life (EOL) on 26 November 2023 and will no longer receive any updates or patches. PHP 8.0 was released on 26 November 2020 and brought many new features and improvements such as named arguments, attributes, constructor property promotion, match expression, nullsafe operator, JIT, and more. The EOL of PHP... Read more »

The post PHP 8.0 reaches EOL leaving some websites vulnerable appeared first on Developer Tech News.

AI coding assistants: A double-edged sword for DevOps in 2024

Ryan Daws — Fri, 10 Nov 2023 14:06:02 +0000

A growing reliance on AI-powered coding assistants is reshaping how DevOps teams operate, for better or worse. According to Forrester’s 2024 cybersecurity, risk, and privacy predictions, AI coding assistants are becoming integral to boosting productivity. However, a cautionary note accompanies this technological shift, as Forrester warns of potential pitfalls that could lead to cybersecurity breaches.... Read more »

The post AI coding assistants: A double-edged sword for DevOps in 2024 appeared first on Developer Tech News.

Wallarm highlights disturbing trends in API security threats

Ryan Daws — Wed, 08 Nov 2023 10:40:12 +0000

Wallarm has released its Q3 2023 API ThreatStats report which sheds light on the escalating threats targeting APIs and revealing vulnerabilities that have impacted industry giants such as Netflix, VMware, and SAP. The report’s revamped ‘Top 10 API Security Threats’ compilation outlines 239 vulnerabilities discovered during the quarter, with injections taking the lead. Injections involve... Read more »

The post Wallarm highlights disturbing trends in API security threats appeared first on Developer Tech News.

Salt launches STEP program to enhance API security for enterprises

Ryan Daws — Wed, 23 Aug 2023 12:00:06 +0000

Salt Security has launched an initiative to help enterprises significantly reduce risk across their API ecosystem. The STEP (Salt Technical Ecosystem Partner) program encompasses the integration of AI-driven API security insights into existing workflows and tools within organisations. This integration empowers joint customers to bolster their security posture using the Salt Security API Protection Platform.... Read more »

The post Salt launches STEP program to enhance API security for enterprises appeared first on Developer Tech News.

Cyber Security & Cloud Expo: Examining the 2022 malware landscape

Ryan Daws — Fri, 23 Sep 2022 11:28:42 +0000

Geopolitical tensions and the largest war in Europe for decades have defined the malware landscape in 2022. Recorded Future has been capturing global threat information from the internet, dark web, and technical sources for over a decade. The firm combines this vast amount of data with AI and human expertise to spot threats early and... Read more »

The post Cyber Security & Cloud Expo: Examining the 2022 malware landscape appeared first on Developer Tech News.

ShiftLeft: Just 3% of app vulnerabilities are attackable

Duncan MacRae — Wed, 29 Jun 2022 11:13:39 +0000

ShiftLeft, an innovator in automated application security testing, has released its second annual AppSec Progress Report documenting critical trends in application security and how organizations are shifting security left to deal with the ever-rising volume of attacks and disclosed vulnerabilities. The report covers year-over-year trends and general findings analyzed from millions of scans last year... Read more »

The post ShiftLeft: Just 3% of app vulnerabilities are attackable appeared first on Developer Tech News.

Five Eyes alliance lists 2021’s top vulnerabilities

Ryan Daws — Thu, 28 Apr 2022 16:09:12 +0000

A cybersecurity advisory issued by members of the ‘Five Eyes’ intelligence alliance lists the most-exploited vulnerabilities of 2021. The Five Eyes consists of the US, UK, Canada, Australia, and New Zealand. Over recent weeks, cybersecurity authorities from the normally secretive alliance have issued a number of joint statements amid increasing global threats. According to the... Read more »

The post Five Eyes alliance lists 2021’s top vulnerabilities appeared first on Developer Tech News.

Google’s Project Zero found over twice as many exploits in 2021

Ryan Daws — Wed, 20 Apr 2022 11:57:28 +0000

Project Zero, Google’s in-house team of experts tasked with finding zero-day exploits, reports that it found over twice as many in 2021. According to the team’s annual report, it found a record 58 zero-day exploits in 2021. That’s over double the 25 it detected in 2020 and the previous record of 28 detected in 2015.... Read more »

The post Google’s Project Zero found over twice as many exploits in 2021 appeared first on Developer Tech News.

GitHub Advisory Database now accepts community contributions

Ryan Daws — Tue, 22 Feb 2022 17:35:57 +0000

GitHub is opening its Advisory Database to community contributions to help further secure software supply chains. One vulnerability can have a devastating “domino effect” on software across the globe. With the use of open-source increasing, so does the threat of a vast amount of software being compromised. GitHub launched its Advisory Database almost two years... Read more »

The post GitHub Advisory Database now accepts community contributions appeared first on Developer Tech News.