OWASP has released a revised version of its Top 10 list of critical risks to web applications, adding two new categories.

Corporations today face increased levels of risk from software vulnerabilities hidden in their business-technology systems and from hackers and cyber crooks who try to steal proprietary corporate ...

Crowdsourced pen tests aren't for everyone, but for one SaaS provider they help identify software flaws that automated tools may miss. You could say Kris Lahiri, VP operations and chief security ...

Karen Schwartz is a freelance technology writer based in the Washington D.C. area. The Census Bureau has moved many of its applications to the web. And like most agencies, Census experiences the ...

Achieving Sarbanes-Oxley (SOX) compliance is not impossible, but there are a few key elements beyond ethical leadership that are necessary to achieve and maintain it. Public corporations must ...

SAN FRANCISCO – June 11, 2012 – Coverity, the leader in development testing, today announced new innovations in static analysis technology that will empower development teams to effectively address ...

While traditional penetration testing (pen testing) has long been the go-to method for identifying security gaps in a organization’s network and web application, a new approach has emerged: ...

Santa Clara, Calif. " June 16, 2009—Cenzic, the leading provider of Web application vulnerability assessment and risk management solutions today announced the 6.0 release of both its cloud computing ...

PALO ALTO, CALIF. -- Hewlett-Packard may not be the first name that comes to mind when the conversation turns to application security, but since its acquisition of SPI Dynamics last year, HP has ...

SPI Dynamics, a provider of Web application security assessment software and services, is being acquired by HP. Terms of the deal were not disclosed. SPI is privately held. The deal will help HP ...