Veracode

Veracode Fix for SCA automates open-source vulnerability fixes

Industry news, RSAC 2026, Veracode /

Veracode Fix for SCA automates open-source vulnerability fixes 2026-03-18 at 14:30 By Industry News Veracode has unveiled Veracode Fix for Software Composition Analysis (SCA), an AI-powered solution to address software supply chain risk. The enhanced automated remediation engine, the next evolution of Veracode’s Fix solution, enables organizations to detect and remediate open-source vulnerabilities easily, before […]

Veracode Fix for SCA automates open-source vulnerability fixes Read More »

Security debt is becoming a governance issue for CISOs

CISO, cyber risk, cybersecurity, Don't miss, News, report, Risk Management, Veracode /

Security debt is becoming a governance issue for CISOs 2026-03-02 at 08:30 By Mirko Zorz Application security backlogs keep expanding across large development portfolios. Veracode’s 2026 State of Software Security Report puts numbers behind a familiar operational pattern, fixes lag discovery, and older weaknesses stay open across release cycles. 2026 findings against the 2025 baseline

Security debt is becoming a governance issue for CISOs Read More »

Veracode’s platform enhancements help prevent software supply chain attacks

Industry news, Veracode /

Veracode’s platform enhancements help prevent software supply chain attacks 2026-01-28 at 16:48 By Industry News Veracode announced significant platform innovations introduced through the second half of 2025. Headlining the release is Package Firewall, a preventive control for software supply chains, advancing the company’s mission to help organizations run secure software from code to cloud. With

Veracode’s platform enhancements help prevent software supply chain attacks Read More »

Financial services can’t shake security debt

Application Security, cybersecurity, financial industry, News, open source, remediation, report, Veracode /

Financial services can’t shake security debt 2025-11-04 at 07:30 By Anamarija Pogorelec In financial services, application security risk is becoming a long game. Fewer flaws appear in new code, but old ones linger longer, creating a kind of software “interest” that keeps growing, according to Veracode’s 2025 State of Software Security report. Researchers analyzed data

Financial services can’t shake security debt Read More »

Photos: Black Hat USA 2025

Black Hat USA 2025, Check Point, conferences, Don't miss, EasyDMARC, Elastic, Google, Gurucul, HackerOne, Keep Aware, News, Oleria, Pentera, Picus Security, SpyCloud, Stellar Cyber, Tines, Trend Micro, Veracode, VioletX, Vonahi Security /

Photos: Black Hat USA 2025 2025-08-07 at 11:38 By Help Net Security Here’s a look inside Black Hat USA 2025. The featured vendors are: Stellar Cyber, Vonahi Security, Gurucul, Check Point, HackerOne, EasyDMARC, Elastic, Google, Tines, Veracode, VioletX, Pentera, Keep Aware, Oleria, SpyCloud, Trend Micro and Picus Security. The post Photos: Black Hat USA 2025

Photos: Black Hat USA 2025 Read More »

AI can write your code, but nearly half of it may be insecure

Artificial Intelligence, cybersecurity, Don't miss, generative AI, LLMs, News, programming, report, Risk Management, Veracode /

AI can write your code, but nearly half of it may be insecure 2025-08-07 at 09:15 By Help Net Security While GenAI excels at producing functional code, it introduces security vulnerabilities in 45 percent of cases, according to Veracode’s 2025 GenAI Code Security Report, which analyzed code produced by over 100 LLMs across 80 real-world

AI can write your code, but nearly half of it may be insecure Read More »

Security flaws in government apps go unpatched for years

Application Security, cybersecurity, News, report, software, survey, Veracode /

Security flaws in government apps go unpatched for years 2025-06-13 at 08:02 By Help Net Security 78% of public sector organizations are operating with significant security debt, flaws left unaddressed for more than a year, according to Veracode. 55% are burdened with ‘critical’ security debt, representing long-standing vulnerabilities with severe risk potential. Public sector flaw

Security flaws in government apps go unpatched for years Read More »

Insider risk management needs a human strategy

access control, Capterra, CISO, Code42, cyber risk, cybersecurity, Don't miss, Features, Hot stuff, Insider Threat, Ivanti, Kai Roer, MIND, News, opinion, Praxis Security Labs, Protasec, Risk Management, strategy, tips, Veracode /

Insider risk management needs a human strategy 2025-05-14 at 08:01 By Mirko Zorz Insider risk is not just about bad actors. Most of the time, it’s about mistakes. Someone sends a sensitive file to the wrong address, or uploads a document to their personal cloud to work from home. In many cases, there is no

Insider risk management needs a human strategy Read More »

Infosec products of the month: April 2025

1touch.io, Abnormal AI, AppViewX, Arctic Wolf Networks, Bitdefender, BitSight, Bugcrowd, Cato Networks, CyberQP, Cyware, Entrust, Exabeam, Flashpoint, Forescout, Index Engines, Jit, LastPass, News, PlexTrac, PowerDMARC, RunSafe Security, Saviynt, Seal Security, Seemplicity, SkyHawk Security, Stellar Cyber, Swimlane, Varonis, Veracode /

Infosec products of the month: April 2025 2025-05-02 at 07:03 By Sinisa Markovic Here’s a look at the most interesting products from the past month, featuring releases from: 1touch.io, Abnormal AI, AppViewX, Arctic Wolf Networks, Bitdefender, BitSight, Bugcrowd, Cato Networks, CyberQP, Cyware, Entrust, Exabeam, Flashpoint, Forescout, Index Engines, Jit, LastPass, PlexTrac, PowerDMARC, RunSafe Security, Saviynt,

Infosec products of the month: April 2025 Read More »

New infosec products of the week: April 25, 2025

Bitdefender, News, PowerDMARC, SkyHawk Security, Stellar Cyber, Swimlane, Veracode /

New infosec products of the week: April 25, 2025 2025-04-25 at 07:06 By Sinisa Markovic Here’s a look at the most interesting products from the past week, featuring releases from Bitdefender, PowerDMARC, Skyhawk Security, Stellar Cyber, Swimlane, and Veracode. Email authentication simplified: How PowerDMARC makes DMARC effortless With PowerDMARC, users can generate and publish DMARC,

New infosec products of the week: April 25, 2025 Read More »

Veracode platform enhancements improve software security

Industry news, RSAC 2025, Veracode /

Veracode platform enhancements improve software security 2025-04-24 at 13:03 By Industry News Veracode announced new capabilities to help organizations address emerging threats, giving security professionals better visibility and control in one place. The launch includes new AI-powered functionality in the Dynamic Application Security Testing (DAST)product and an External Attack Surface Management (EASM) capability. Together, they

Veracode platform enhancements improve software security Read More »

What 2024 taught us about security vulnerabilties

BitSight, Black Duck, Checkmarx, CISA, cybersecurity, FBI, Fortinet, NCSC, News, NSA, report, Skybox Security, survey, Tenable, Veracode, vulnerability /

What 2024 taught us about security vulnerabilties 2025-01-14 at 06:03 By Help Net Security From zero-day exploits to weaknesses in widely used software and hardware, the vulnerabilities uncovered last year underscore threat actors’ tactics and the critical gaps in organizational defenses. This roundup showcases the standout findings from 2024’s cybersecurity reports, highlighting critical risks and

What 2024 taught us about security vulnerabilties Read More »

Veracode unveils innovations for secure software development

Industry news, Veracode /

Veracode unveils innovations for secure software development 2024-12-02 at 15:20 By Industry News Veracode announced innovations to help developers build secure-by-design software, and security teams reduce risk across their code-to-cloud ecosystem. The latest enhancements in Veracode Fix and Veracode Risk Manager, formerly known as Longbow Security, give developers the ability to build software, assess risk,

Veracode unveils innovations for secure software development Read More »

Evaluating your organization’s application risk management journey

Application Security, automation, CISO, cybersecurity, Don't miss, Features, Hot stuff, News, opinion, Risk Management, strategy, supply chain, Veracode /

Evaluating your organization’s application risk management journey 2024-11-12 at 07:33 By Mirko Zorz In this Help Net Security interview, Chris Wysopal, Chief Security Evangelist at Veracode, discusses strategies for CISOs to quantify application risk in financial terms. Wysopal outlines the need for continuous risk management practices and robust strategies to manage third-party software dependencies, ensuring

Evaluating your organization’s application risk management journey Read More »

50% of financial orgs have high-severity security flaws in their apps

Application Security, code, cybersecurity, News, report, software, survey, Veracode /

50% of financial orgs have high-severity security flaws in their apps 2024-11-01 at 08:03 By Help Net Security Security debt, defined for this report as flaws that remain unfixed for longer than a year, exists in 76% of organizations in the financial services sector, with 50% of organizations carrying critical security debt, according to Veracode.

50% of financial orgs have high-severity security flaws in their apps Read More »

59% of public sector apps carry long-standing security flaws

Application Security, cybersecurity, News, report, survey, Veracode /

59% of public sector apps carry long-standing security flaws 2024-05-30 at 07:07 By Help Net Security Applications developed by public sector organizations have more security debt than those created by the private sector, according to Veracode. Security debt, defined for this report as flaws that remain unfixed for longer than a year, exists in 59%

59% of public sector apps carry long-standing security flaws Read More »

Veracode platform enhancements help organizations reduce application risk

Industry news, Veracode /

Veracode platform enhancements help organizations reduce application risk 2024-05-02 at 12:01 By Industry News Veracode announced platform innovations that set a new standard for developer-powered application security. New repo risk visibility and analysis from Longbow Security, powered by Veracode, speeds up remediation of application risk from code repositories to runtime images. The solution launches alongside

Veracode platform enhancements help organizations reduce application risk Read More »

Veracode acquires Longbow Security to help organizations reduce application risk

Industry news, Veracode /

Veracode acquires Longbow Security to help organizations reduce application risk 2024-04-02 at 12:01 By Industry News Veracode announced the acquisition of Longbow Security, a pioneer in security risk management for cloud-native environments. The acquisition marks the next exciting phase of Veracode, underscoring the company’s commitment to help organizations manage and reduce application risk across the

Veracode acquires Longbow Security to help organizations reduce application risk Read More »

Veracode Buys Longbow Security for Automated Root Cause Analysis Tech

Application Security, Funding/M&A, Longbow Security, M&A Tracker, seed-stage, Veracode /

Veracode Buys Longbow Security for Automated Root Cause Analysis Tech 2024-04-01 at 23:46 By Ryan Naraine Veracode announces a deal to acquire Longbow Security, a Texas seed-stage startup working on automated root cause analysis technology. The post Veracode Buys Longbow Security for Automated Root Cause Analysis Tech appeared first on SecurityWeek. This article is an

Veracode Buys Longbow Security for Automated Root Cause Analysis Tech Read More »

36% of code generated by GitHub CoPilot contains security flaws

code, Don't miss, News, report, software development, survey, Veracode /

36% of code generated by GitHub CoPilot contains security flaws 2024-02-20 at 06:32 By Help Net Security Security debt, defined as flaws that remain unfixed for longer than a year, exists in 42% of applications and 71% of organizations, according to Veracode. Worryingly, 46% of organizations have persistent, high-severity flaws that constitute ‘critical’ security debt,

36% of code generated by GitHub CoPilot contains security flaws Read More »

Scroll to Top