The Shift to the Cloud and its Implications for Application Security
How does the shift to the Cloud affect application security?
Read about application security, DevSecOps, open source license compliance and audit
How does the shift to the Cloud affect application security?
How do fintech companies address the risks posed by vulnerabilities like Spring4Shell? Here’s how Mend tackled the issue for MSCI to speedily thwart any potential threats.
Discover what the key considerations are for building a successful cloud security, according to a recent panel discussion attended by Mend’s Jack Marsal.
Learn the five key principles of modern application security and why they’re so vital.
Kubernetes security should be a primary concern and not an afterthought. Learn how to avoid risks by applying security best practices.
Mend celebrates International Women’s Day with insights from some of our talented women about building a career in technology.
Discover how financial services are embracing open source in this summary of the Fintech Open Source Foundation’s latest report.
New Biden Cybersecurity Strategy Assigns Responsibility to Tech Firms
Learn who should take responsibility for application security, according to Mend VP of Product Management Jeffrey Martin.
Learn about the key findings of Mend’s Open Source Risk Report, and how to secure your software supply chain.
Learn how CI/CD (continuous integration/continuous delivery) pushes frequent, incremental software updates & fixes regardless of size using automation tools.
Discover how you can build an effective modern application security program by increasing awareness and understanding in your organization.
Discover the essential features and best practices you should have in your license management tool.
Discover what you can do to protect your AppSec with a modern application security strategy.
Docker is a complicated beast, and there is no simple trick you can use to maintain Docker container security. We offer a set of best practices that should help you.
What should you look for in a modern open source license management tool, why and how to do so, the challenges and the future of open source license management.
This report identifies the extent to which the financial services industry is active in open source, creating a baseline of understanding of governance, leadership, consumption, contribution, culture, and overall open source aspiration. Further, the report highlights the obstacles and challenges to improving industry-wide collaboration and concludes with a set of actionable insights for improving the...
Threat actors operate by an ironclad rule: If it’s important to businesses, it’s important to them. And they certainly understand the crucial business role of applications. Applications are now the number one attack vector, while software supply chain attacks increased 650 percent in a year. Clearly, if you don’t already have a modern application security...
This white paper from Mend, the market leader in SCA, explains how to build an open source security program that gives you confidence that everything is visible, policies are being followed, and your developers are actually using the security tools provided for them. Learn how to build your open source security program today – download...
Your Bitbucket Cloud repos are key to building best-in-breed applications and a great place to shift left for better open source security. With other software composition analysis (SCA) tools, keeping your repos safe can be a cumbersome process requiring frequent tool-switching. Now, you can integrate world-class open source security that automates remediation and reduces mean...
The final part of a series of three blogs on software and application security in banking and fintech.
Learn about the risks posed by leaked code and malicious packages at Russian tech giant Yandex.
Introducing an article in Forbes by Mend CEO Rami Sass, focusing on how application security requires ongoing awareness, effort and investment, buy-in from executive leadership, and the inculcation of a security-aware culture within every organization.
Discover why cloud-native environments are vulnerable, two of the main risks, and how to address them.
Discover the threats, opportunities, and challenges of building a modern application security strategy.
Increase your knowledge of open source licenses by learning what the main types are, how they work, and how they differ.
What’s the modern approach to SAST, why is it different, and how does it optimize your organization’s code, software, and application security?
Part two of three blogs in a series that focuses on the challenges, opportunities and solutions for software and application security in banking and fintech.
Mend’s new Open Source Risk Report delves into the significant risk posed by the ongoing rise in open source vulnerabilities and software supply chain attacks.
Experts from Mend, FINOS, the Linux Foundation and Morgan Stanley discuss the challenges and opportunities of software and application security in banking and fintech. Part one of three.
Kubernetes is widely used but comes with security risks. Discover what these risks are, how they can be exploited, how to define and implement security for Kubernetes configurations, and how to protect Kubernetes applications.
Mend researchers identify a new type of malicious code that deletes directories.
Several Mend experts offer insight into what they expect to see in 2023 – and some ideas on how to prepare.
Open source license management has become so important that governments are seeking to mandate it.
Learn how to build a compelling case for buying a software composition analysis (SCA) tool in your organization.
Attacks targeting the software supply chain are on the rise. Learn why an SBOM is vital to Application Security and Compliance.