As a reporter for a publication focused on software development two years ago, I wrote a couple stories about how first software was developed so it did what it was designed to do, then they’d worry ...

As organizations modernize the software development lifecycle to support rapid deployment and cloud native workflows, ...

In last week's column, I talked to Bruce Schneier about complexity, one of the main reasons it will be hard for computer security to improve in the future. As software becomes more complex, in terms ...

For all the scary talk about cyberattacks from vendors and industry experts, relatively few attacks are actually devastating. But the Jaguar Land Rover (JLR) attack was. The JLR breach wasn’t some ...

Microsoft on Wednesday offered a progress report on its "Secure Future Initiative" (SFI). The announcement by Bret Arsenault, Microsoft's corporate vice president and chief cybersecurity advisor, ...

“Fun” isn’t usually the first word that comes to mind when the topic of cybersecurity comes up. But the techniques of gamification—applying game design elements and principles in non-game settings to ...

CodeSecure, a leading global provider of application security testing (AST) solutions, and FOSSA, the complete software supply chain platform, are partnering to provide native product integration that ...

Security is a key consideration when it comes to platform engineering, which is the next step in the evolution of DevOps. Platform engineering is a discipline for designing, building and maintaining ...

A lifecycle-based guide to securing enterprise AI—covering models, data, and agents, with five risk categories and governance guidance for leadership.

As software becomes more complex, security only becomes more difficult. More lines of code, indeed, bring greater potential for bugs. At least, that’s one side of the debate. “In general, I wholly ...