Application Security

Software Supply Chain Security: The Basics and Four Critical Best Practices

September 14th, 2023 Angelika Skrobot

Learn about software supply chain security basics and best practices to prevent attacks.

How Software Supply Chain Security Regulation Will Develop, and What Will It Look Like?

September 12th, 2023 Angelika Skrobot

Discover how software supply chain security regulations are evolving and what they mean for businesses.

Regulations Shift Responsibility For SLSA

Why Legal Regulation Shifts Responsibility for Software Supply Chain Security to Vendors

September 7th, 2023 Ron Sigalov

Discover why legal regulations are shifting responsibility for software supply chain security to vendors.

Are You Protected from the 12 Most Exploited Vulnerabilities?

September 5th, 2023 Adam Murray

Stay informed about the 12 most exploited vulnerabilities in 2022 & how to protect your software supply chain with AppSec tools and practices.

Five Best Practices For Maintaining Up-To-Date Dependencies

Five Key Application Security Best Practices and Benefits for Maintaining Up-to-Date Dependencies

August 22nd, 2023 Rhys Arkins

Learn the five key application security best practices and benefits for maintaining up-to-date dependencies.

There’s a New Stealer Variant in Town, and It’s Using Electron to Stay Fully Undetected

August 10th, 2023 Ron Sigalov

Discover the latest threat in town – a new info-stealer variant using Electron to remain undetected. Learn about its attack flow.

A New Version of Mend for Containers is Here

August 9th, 2023 Angelika Skrobot

Mend for Containers offers advanced security while helping DevSecOps teams identify threats, prioritize remediation, & enforce policies.

Top Ten Tips to Choose a Great SAST Tool

August 3rd, 2023 Adam Murray

The top ten tips for choosing a SAST tool for application security. Integration, automation, and scalability are key factors to consider.

What Risks Do You Run from Brandjacking, and How Do You Overcome Them?

August 1st, 2023 Adam Murray

Learn about the risks of brandjacking & how to overcome them with application security tools & practices. Protect your org from cyber threats.

How Can Application Security Cope With The Challenges Posed by AI?

July 25th, 2023 Angelika Skrobot

Discover the new era of AI-powered application security. Learn how to cope with the challenges posed by AI in the AppSec industry.

The New Era of AI-Powered Application Security. Part Two: AI Security Vulnerability and Risk

July 18th, 2023 Ron Sigalov

Discover the new era of AI-powered application security. Learn about risks, and suggested approaches to cope with AI challenges.

The New Era of AI-Powered Application Security. Part One: AI-Powered Application Security: Evolution or Revolution?

July 11th, 2023 Ron Sigalov

Discover the new era of AI-powered application security. Learn about the evolution, benefits, and risks of AI in security.

How Does SLSA Help Strengthen Software Supply Chain Security?

July 7th, 2023 Adam Murray

Learn how SLSA enhances software supply chain security with levels of protection. Understand the risks, benefits, and best practices.

Why You Should Avoid Copy and Paste Code

July 5th, 2023 Adam Murray

Discover why copying and pasting code can compromise your software’s security, quality, and compliance with licensing.

Announcing the Open-Source Reliability Leaderboard: A New Resource for Preventive AppSec

June 29th, 2023 Carol Hildebrand

Discover the top open-source packages for preventive AppSec with Mend.io’s Reliability Leaderboard. Learn about package reliability and more.

CVSS 4.0 — What’s New?

June 22nd, 2023 Angelika Skrobot

Learn about the new features and improvements in CVSS 4.0, the Common Vulnerability Scoring System. Understand how to use it.

MEND PLATFORM

Featured

From Reactive to Effective: Building Application Security that Works

The Complete Guide for Open Source Licenses 2024