Not only are we less clear about who is developing software, but we are also less confident about our total inventory of ...

Organizations must proactively manage developer risk through establishing a self-governance strategy—one that accounts for ...

Software security may finally be getting the attention it deserves as more countries institute necessary guidelines. But with threats increasing against the software supply chains, it is too soon to ...

SUNNYVALE, Ca.--(BUSINESS WIRE)--In response to rising software supply chain attacks, BlueFlag Security is delivering enhanced capabilities within its platform for software development life cycle ...

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Cory Benfield discusses the evolution of ...

Expanded capabilities help enterprises design custom cybersecurity platforms, automate threat detection, and strengthen software defenses using advanced AI and secure development practices.

Despite rapid generation of functional code, LLMs are introducing critical, compounding security flaws, posing serious risks for developers.

New SD Elements capability makes security requirements clear, enforced, and auditable as AI writes more software ...

Large language models have been pitched as the next great leap in software development, yet mounting evidence suggests their ...

As we approach the mid-year of 2024, most CISOs and CSOs have established and are currently executing their organizations' security posture priorities for the year. While the industry made significant ...

The US Cybersecurity & Infrastructure Security Agency (CISA) has published IT sector-specific goals (IT SSGs) to protect against cyber threats, including 11 software development process goals and ...

Executives from the boardroom and the C-suite are realizing the damaging effect software supply chain attacks can have on their organizations, but they aren't taking action. According to a recent ...