Psychic Signatures - what you need to know

Get ahead of software vulnerabilities in NGINX and Microsoft Windows SMB Remote Procedure Call service

Zero-day attacks are on the rise. It's time to plan a defensive edge.

New vulnerabilities in Spring libraries: how to know if you are at risk and what to do

What is Trojan Source and how does it sneak into your source code

The Log4j vulnerability explained - Its attack vector and how to prevent it

Experience the impact of the Path Traversal Vulnerability to blame for the recent Apache woes

When good microwaves go bad: Why embedded systems security is the next boss battle for developers

Hiding in plain sight: Why the SolarWinds attack revealed more than malicious cyber risk

Happy birthday SQL injection, the bug that can’t be squashed

Coders Conquer Security OWASP Top 10 API Series - Missing Function Level Access Control

ClickShare Vulnerabilities May Have Been Patched, But They Mask a Much Bigger Problem

Death by Doki: A new Docker vulnerability with serious bite (and what you can do about it)

Is your organization really DevSec-ready? Put it to the test.

COBOL Application Development Security | Secure Code Warrior

The most dangerous software errors of 2019: More evidence of history repeating

The Great Global Patch: VxWorks Flaws Set to Compromise Millions of Devices

Huawei security UK problems demonstrate the need for secure coding

GitHub Users Held to Ransom with Plaintext Pain

Software Security is in the Wild West (and it's going to get us killed)

Confusing Privacy with Security: The Fatal Mistake

More Breaches, More Problems: The Cost of Trust in Third-Party Apps

Secure coding technique: Let's talk about Tapjacking

Copy/Paste is a dangerous coding technique

Hello from the other side. Interview with a bug bounty hunter.

How secure coding guidelines evolve

Equifax security issues uncovered in 2016

The difficulty with patching deserialization vulnerabilities

Root cause of Equifax hack is web app vulnerability