If you're involved in securing the applications your organization develops, there is no question that Static Application Security Testing (SAST) solutions are an important part of a comprehensive application security strategy. SAST secures software, supports business more securely, cuts down on costs, reduces risk, and speeds time to development, delivery, and deployment of … [Read more...] about What to Look for When Selecting a Static Application Security Testing (SAST) Solution
Application
Researchers Detail New Attack Method to Bypass Popular Web Application Firewalls
Dec 10, 2022Ravie LakshmananWeb App Firewall / Web Security A new attack method can be used to circumvent web application firewalls (WAFs) of various vendors and infiltrate systems, potentially enabling attackers to gain access to sensitive business and customer information. Web application firewalls are a key line of defense to help filter, monitor, and block HTTP(S) traffic … [Read more...] about Researchers Detail New Attack Method to Bypass Popular Web Application Firewalls
Application Snapshots: A Valuable Observability Signal for Developers
Monitoring is often not the first thing on the mind of the modern developer. Yet, it’s necessary at many points of the software development lifecycle, including: before deprecating an API, before launching a new feature, after launching the feature, and more. In fact, monitoring needs can vary much more than the classic Ops monitoring.There is one type of telemetry data that is … [Read more...] about Application Snapshots: A Valuable Observability Signal for Developers
Mitigating Dynamic Application Risks with Secure Firewall Application Detectors
As part of our strategy to enhance application awareness for SecOps practitioners, our new Secure Firewall Application Detectors portal, https://appid.cisco.com, provides the latest and most comprehensive application risk information available in the cybersecurity space. This advance is important because today’s applications are not static. In fact, applications are … [Read more...] about Mitigating Dynamic Application Risks with Secure Firewall Application Detectors
Unifying the Power of EDR with SaaS and Application Security
There’s no stopping when it comes to scaling your business, so why should your security remain stagnant? With your organization constantly expanding and your IT and security stack increasing in tools, your threat landscape is bound to grow with it. And by leveraging an increasing number of external applications and software-as-a-service (SaaS)-delivered solutions, you’re … [Read more...] about Unifying the Power of EDR with SaaS and Application Security
Test Automation for Application Security
This blog is co-authored by Matthew McCullough and is part three of a four-part series about DevSecOps. Previously, the series explored a framework for continuous security and looked at one aspect of maintaining application security, a software Bill of Materials (BOM,) and associated vulnerabilities. This blog focuses on application security and how Cisco validates its software … [Read more...] about Test Automation for Application Security
MITRE ATT&CK: The Magic of Application Mitigations
“The eyes are the window to your soul.” Hmmm. How about a new twist? Applications are the window to your business. Like windows, applications tempt thieves and prying eyes. Securing them can be paneful (ugh, sorry). But we’ve got some great advice on protecting applications in the modern era. The evolution of today’s applications Let’s get this out of the way right now: Modern … [Read more...] about MITRE ATT&CK: The Magic of Application Mitigations
Cisco Secure Application: A New Approach to Application Security
It’s no surprise that the events of 2020 drastically changed the IT landscape, as millions of people began working from home, accessing apps from a multitude of devices on public internet and service providers. As organizations embraced hybrid/multi-cloud technologies, vastly expanding the perimeter of IT, they also faced an unprecedented rise in malicious security threats and … [Read more...] about Cisco Secure Application: A New Approach to Application Security
Why Replace Traditional Web Application Firewall (WAF) With New Age WAF?
At present, web applications have become the top targets for attackers because of potential monetization opportunities. Security breaches on the web application can cost millions. Strikingly, DNS (Domain Name System) related outage and Distributed denial of service (DDoS) lead a negative impact on businesses. Among the wide range of countermeasures, a web application firewall … [Read more...] about Why Replace Traditional Web Application Firewall (WAF) With New Age WAF?
Why Application Security Should Be Considered An Enabler For Business
If you ask Alex, he won't admit being old-fashioned. He has been working in the IT industry for a while now and accepts that security is important for the business's health. But reluctant to take security as the business enabler.In today's environment, moving to digitization is a critical step required to drive innovation and business growth. When the application development … [Read more...] about Why Application Security Should Be Considered An Enabler For Business