There’s a progress problem in application security (AppSec). According to Cloud Security Alliance, the number of global web apps doubled in the last five years from 863 million in 2015 to 1.9 billion in 2020. Yet at the same time, developers and security practitioners are…
What is continuous web application security?
The term continuous security in the context of web application security is best understood when paired with well-known terms continuous integration and continuous deployment (CI/CD). Continuous security means that security is part of a continuous process – DevSecOps or, even better, SecDevOps. The confusion around…
FISMA Update: What’s changing and why it matters
In early October, the Homeland Security and Governmental Affairs Committee announced bipartisan legislation that’s set to make waves in federal civilian cybersecurity. This move to overhaul the Federal Information Security Management Act (FISMA) from 2014 is especially notable as the government became the most targeted…
Dev-Sec convergence: New research details progress and challenges on the road to secure innovation
Invicti Security’s Fall 2021 AppSec Indicator report reveals where organizations make security trade-offs in the push to innovate; explores the promise of automation and integration Austin, TX, October 26, 2021 at 9am EDT – Nearly all organizations are increasing their investment in application security this…
New Industry Study: 70% Of Teams Skip Security Steps
Hot off the presses, the Fall 2021 Invicti AppSec Indicator is shedding light on the state of web application security (AppSec), including areas for improvement to speed up software innovation. The report, created in partnership with Wakefield Research, surveyed 600 individuals in security, development, and…
Deploying AcuSensor for PHP – AWS Elastic Beanstalk
AWS Elastic Beanstalk allows you to deploy a web application that can scale to match end-user demand. This simple example will demonstrate how you can deploy AcuSensor together with your web application into AWS Elastic Beanstalk. LEARN MORE: How to Prevent SQL Injection in PHP…
Invicti Security announces $625 million growth investment led by Summit Partners
Disruptive leader in web application security plans to leverage new investment to continue product expansion and support global growth Austin, TX and Boston, MA – October 20, 2021 – Invicti SecurityTM, a global leader in application security testing, today announced that it has signed a definitive…
CISA’s Zero Trust Maturity Model is a rallying cry for modern web app security
Increasingly sophisticated cyberattacks against federal agencies highlight the urgent need to enhance federal cybersecurity. To help with this, CISA has published the Zero Trust Maturity Model to assist agencies in implementing zero trust architecture (ZTA) – and modern AppSec solutions are a crucial part of…
Acunetix introduces support for Brotli encoding, IAST support for new Node.js frameworks, and many new vulnerability checks
A new Acunetix Premium update has been released for Windows, Linux, and macOS: 14.5.211008143. This Acunetix release introduces support for the Brotli encoding and URL optional fields. The Node.js IAST AcuSensor has been updated to support numerous frameworks and the JAVA IAST AcuSensor can now…