With the June 2023 Supply Chain Security executive order looming, Deepfactor 3.2 introduces important SCA, SBOM, and runtime security enhancements designed to help customers reduce risk, improve supply chain security,…
From Kubernetes Security to Cloud Native Application Security Recently, we partnered with DZone and Yitaek Hwang to publish the Kubernetes Security Essentials Refcard. Our objective was to help engineering teams…
In the past couple of years in my technical product role here at Deepfactor, I have had several meetings with VPs and directors of security from large, global organizations in…
When Deepfactor was launched in September 2020, the market was [being] upended by technical innovations in containerization (i.e. K8s), software delivery (i.e. CI/CD), and security (i.e. more on that below).…
By Guest Author Teja Myneedu, Director—Product Security Engineering and Research, TripActions OpenSSL is a commonly used cryptographic toolkit widely used for SSL/TLS across web-based applications. The OpenSSL project routinely releases bug…
By Guest Author Teja Myneedu, Director—Product Security Engineering and Research, TripActions Following the Log4Shell exploit discovered in Java logging library Log4j in December 2021, it is the latest trend to…
Deepfactor Developer Security 3.0 Adds Real-Time DevSecOps Insights with Intuitive Developer Friendly User Experience Deepfactor Developer Security 3.0 includes significant architectural changes to improve the product experience for developers, AppSec…
How DevSecOps and Developer Security Can Reduce Risk, Accelerate Release Velocity, and Save Developers Time Over the 20+ years I’ve been working in the cybersecurity industry, I’ve been a SANS…
A recent vulnerability came across my radar earlier this week. The description was vague but said: "There is a stack overflow vulnerability caused by strcpy." This API first appeared in…
BSides LV / Black Hat 25 / DEF CON 30 (aka Hacker Summer Camp 2022) in Las Vegas is now in the rear-view mirror. In addition to news that continues…
Kubernetes is becoming the standard for automating the deployment and management of cloud native applications. But because of its complexity, securing your Kubernetes environment and the cloud native apps that…
Deepfactor v2.4 Enhancements Provide Additional Flexibility for Developers Including the Ability to Configure Schema to Derive Application Names, Choose How Pods Can Be Grouped into Apps, More With the newly…
