Second wave of Shai-Hulud npm worm compromises the global software supply chain
Accurate vulnerability scanning saves money – and we can prove it
To build DevSecOps, you need both modern tools and cultural changes
Why web asset discovery is a crucial part of your AppSec program
The new OWASP Top 10 is not what you think
The pitfalls of DIY application security
What to look for in a DAST solution
Serious about web application security? Look both ways as you shift left
What is privilege escalation and why is it important?
