The Shift to the Cloud and its Implications for Application Security
How does the shift to the Cloud affect application security?
Choose Your Type
Choose Your Topic
Our Latest Content
What Can Fintech Firms Do When Vulnerabilities Like Spring4Shell Hit Them?
How do fintech companies address the risks posed by vulnerabilities like Spring4Shell? Here’s how Mend tackled the issue for MSCI to speedily thwart any potential threats.
Key Considerations for Building a Successful Cloud Security Program
Discover what the key considerations are for building a successful cloud security, according to a recent panel discussion attended by Mend’s Jack Marsal.
The Five Key Principles of Modern Application Security
Learn the five key principles of modern application security and why they’re so vital.
Kubernetes Security Best Practices
Kubernetes security should be a primary concern and not an afterthought. Learn how to avoid risks by applying security best practices.
Mend’s Women Lead the Way
Mend celebrates International Women’s Day with insights from some of our talented women about building a career in technology.
FINOS: The State of Open Source in Financial Services
Discover how financial services are embracing open source in this summary of the Fintech Open Source Foundation’s latest report.
Will Biden’s National Cybersecurity Strategy Trigger AppSec Change?
New Biden Cybersecurity Strategy Assigns Responsibility to Tech Firms
Just Who Exactly Should Take Responsibility for Application Security?
Learn who should take responsibility for application security, according to Mend VP of Product Management Jeffrey Martin.
Securing the Software Supply Chain: Key Findings from the Mend Open Source Risk Report
Learn about the key findings of Mend’s Open Source Risk Report, and how to secure your software supply chain.
CI/CD and the Promise of Agile Transformation
Learn how CI/CD (continuous integration/continuous delivery) pushes frequent, incremental software updates & fixes regardless of size using automation tools.
The CISO’s Guide to Application Security Innovation
Discover how you can build an effective modern application security program by increasing awareness and understanding in your organization.
Open Source License Management Tools: Features and Best Practices
Discover the essential features and best practices you should have in your license management tool.
Building a Modern AppSec Strategy: How to Secure Applications
Discover what you can do to protect your AppSec with a modern application security strategy.
Docker Container Security: Challenges and Best Practices
Docker is a complicated beast, and there is no simple trick you can use to maintain Docker container security. We offer a set of best practices that should help you.
Open Source License Management Tools: Challenges, Opportunities, and What to Look Out For
What should you look for in a modern open source license management tool, why and how to do so, the challenges and the future of open source license management.
FINOS: The 2022 State of Open Source in Financial Services
This report identifies the extent to which the financial services industry is active in open source, creating a baseline of understanding of governance, leadership, consumption, contribution, culture, and overall open source aspiration. Further, the report highlights the obstacles and challenges to improving industry-wide collaboration and concludes with a set of actionable insights for improving the...
The CISO’s Guide to AppSec Innovation
Threat actors operate by an ironclad rule: If it’s important to businesses, it’s important to them. And they certainly understand the crucial business role of applications. Applications are now the number one attack vector, while software supply chain attacks increased 650 percent in a year. Clearly, if you don’t already have a modern application security...
Guide to Open Source Software Security
This white paper from Mend, the market leader in SCA, explains how to build an open source security program that gives you confidence that everything is visible, policies are being followed, and your developers are actually using the security tools provided for them. Learn how to build your open source security program today – download...
More Security, Less Tool Switching: Mend SCA for Bitbucket Cloud
Your Bitbucket Cloud repos are key to building best-in-breed applications and a great place to shift left for better open source security. With other software composition analysis (SCA) tools, keeping your repos safe can be a cumbersome process requiring frequent tool-switching. Now, you can integrate world-class open source security that automates remediation and reduces mean...
Software and AppSec Challenges and Opportunities in Banking and Fintech — Part Three
The final part of a series of three blogs on software and application security in banking and fintech.
Yandex Data Leak Triggers Malicious Package Publication
Learn about the risks posed by leaked code and malicious packages at Russian tech giant Yandex.
Application Security Requires Concerted, Continuous Efforts
Introducing an article in Forbes by Mend CEO Rami Sass, focusing on how application security requires ongoing awareness, effort and investment, buy-in from executive leadership, and the inculcation of a security-aware culture within every organization.
How to Manage Risk Effectively in Cloud-Native Environments
Discover why cloud-native environments are vulnerable, two of the main risks, and how to address them.
Building a Modern Application Security Strategy. Part One: Threats, Opportunities, and Challenges
Discover the threats, opportunities, and challenges of building a modern application security strategy.
Top Open Source Licenses Explained
Increase your knowledge of open source licenses by learning what the main types are, how they work, and how they differ.
Why do we need a new approach to SAST?
What’s the modern approach to SAST, why is it different, and how does it optimize your organization’s code, software, and application security?
Software and AppSec Challenges and Opportunities in Banking and Fintech — Part Two
Part two of three blogs in a series that focuses on the challenges, opportunities and solutions for software and application security in banking and fintech.
Mend Open Source Risk Report
Mend’s new Open Source Risk Report delves into the significant risk posed by the ongoing rise in open source vulnerabilities and software supply chain attacks.
Software and AppSec Challenges and Opportunities in Banking and Fintech — Part One
Experts from Mend, FINOS, the Linux Foundation and Morgan Stanley discuss the challenges and opportunities of software and application security in banking and fintech. Part one of three.
What Threatens Kubernetes Security and What Can You Do About It?
Kubernetes is widely used but comes with security risks. Discover what these risks are, how they can be exploited, how to define and implement security for Kubernetes configurations, and how to protect Kubernetes applications.
Malicious Code Deletes Directories If You Do Not Have a License
Mend researchers identify a new type of malicious code that deletes directories.
Mend’s Trends for 2023
Several Mend experts offer insight into what they expect to see in 2023 – and some ideas on how to prepare.
Why Open Source License Management Matters
Open source license management has become so important that governments are seeking to mandate it.
How to Make a Case for Buying SCA
Learn how to build a compelling case for buying a software composition analysis (SCA) tool in your organization.
Why an SBOM is Vital to Application Security and Compliance
Attacks targeting the software supply chain are on the rise. Learn why an SBOM is vital to Application Security and Compliance.