Why a secure software development life cycle is critical for manufacturers

Recent supply-chain breaches show how attackers exploit development tools, compromised credentials, and malicious NPM ...

Black Duck debuts Signal to secure software at the speed of AI development

Application security solutions provider Black Duck Software Inc. today announced the launch of Black Duck Signal, a new ...
Federal News Network

Industry flags DoD’s lack of standardized software attestation processes

Vendors said it is unclear what qualifies as a valid attestation, what evidence must be included or how often attestations are required.
CRN

The 10 Hottest AI Security Tools Of 2025

The hottest AI security tools of 2025 included products for protecting the usage of GenAI applications, AI agents and LLMs, from vendors including CrowdStrike, Palo Alto Networks and SentinelOne.
Forbes

Enable Next-Gen Security For Your Software With Secure SDLC

Customer satisfaction is key to product success. That’s why development teams are often tempted to prioritize application performance and functionality, hoping to introduce necessary cybersecurity ...

Sonatype debuts guide to secure AI-assisted software development

Software supply chain management firm Sonatype Inc. today announced the launch of Sonatype Guide, a new developer tool that ...

Researchers Find 30+ Security Flaws In AI Coding Tools

Security researchers have uncovered more than 30 serious vulnerabilities across a range of AI-powered coding tools and IDE ...
Dark Reading

Getting a Cybersecurity Vibe Check on Vibe Coding

Vibe coding, the act of using natural language to instruct large language models (LLMs) to generate code, is on the rise. A wide number of emerging startups and platforms aimed at packaging the ...
Computer WeeklyOpinion

Why bug bounty schemes have not led to secure software

Computer Weekly speaks to Kate Moussouris, security entrepreneur and bug bounty pioneer, about the life of security ...