SANS DevSecOps Survey 2022: 5 Key Takeaways
How DevSecOps and Developer Security Can Reduce Risk, Accelerate Release Velocity, and Save Developers Time Over the 20+ years I’ve been working in the cybersecurity industry, I’ve been a SANS…
Read More >
Another Bug Caused by Memory Unsafe String APIs
A recent vulnerability came across my radar earlier this week. The description was vague but said: "There is a stack overflow vulnerability caused by strcpy." This API first appeared in…
Read More >
CTO Observations from Hacker Summer Camp 2022
BSides LV / Black Hat 25 / DEF CON 30 (aka Hacker Summer Camp 2022) in Las Vegas is now in the rear-view mirror. In addition to news that continues…
Read More >
Kubernetes Container Security: 4 Reasons Why It’s Hard to Detect Security Risks
Kubernetes is becoming the standard for automating the deployment and management of cloud native applications. But because of its complexity, securing your Kubernetes environment and the cloud native apps that…
Read More >
Now Available: Deepfactor Developer Security v2.4
Deepfactor v2.4 Enhancements Provide Additional Flexibility for Developers Including the Ability to Configure Schema to Derive Application Names, Choose How Pods Can Be Grouped into Apps, More With the newly…
Read More >
What Is Developer Security, and Why Is It the Final Stage of DevSecOps Maturity?
Though many organizations successfully (more or less) navigated the transition to DevOps, addressing security challenges in cloud native applications remains a major challenge. In order to address these challenges, over 60%…
Read More >
Spring4Shell—Similar Name, Minimal Impact
Researchers recently “disclosed” (information was actually leaked on Twitter ahead of the CVE) a new remote code execution (RCE) vulnerability in Spring Core. This popular web application development framework is…
Read More >
Now Available: Deepfactor v2.3
Two of the core values of the Deepfactor developer security platform are simple and automated cloud native instrumentation and deep insights into application risks. Deepfactor v2.3 introduces several enhancements to…
Read More >
DeepInsights: Understanding and Observing Risky Application Behavior with Deepfactor
Deepfactor is a developer security platform that enables engineering teams to observe unexpected and risky application behavior during software development, helping developers quickly discover and resolve security vulnerabilities, supply chain…
Read More >
CNCF Annual Survey 2021: Another Year of Valuable Insights on Cloud Native Technology
Join me for highlights of some of the more interesting and relevant (to DeepFactor) parts of the 2021 Cloud Native Computing Foundation Annual Report released on February 10, 2022. I…
Read More >
The State of the Developer Industry and More….DeveloperWeek 2022 Recap
Kiran Kamity, CEO of DeepFactor, recaps his experience at DeveloperWeek 2022. Last week (Feb 7-9, 2022), DevNetwork hosted DeveloperWeek, the world’s largest developer and engineering conference series. As described…
Read More >
What You Can Expect at Developer Week 2022 This Week
Why Kiran Kamity, CEO of DeepFactor, and new member on the DevNetwork Advisory Board, is looking forward to Developer Week 2022 Even in the early stages of designing DeepFactor, our…
Read More >