Web Security Blog

The risks of doing vulnerability testing and management for compliance only

Wed, 28 May 2025

In this instalment of CISO’s Corner, we deal with the pitfalls of mistaking compliance for security and see how adopting a risk-based mindset helps you stay secure in the real world while still checking all the right boxes.

Read more

The SANS/CWE Top 25 dangerous software errors of 2021

Wed, 01 Dec 2021

Building a secure SDLC for web applications

Wed, 24 Nov 2021

The secret to getting results, not noise, from your DAST solution

Fri, 19 Nov 2021

What government agencies need to know about CISA’s new Binding Operational Directive

Fri, 12 Nov 2021

Is DevSecOps the same as SecDevOps? Does it matter?

Fri, 05 Nov 2021

Webcast Recap: Unlocking your AppSec future

Tue, 02 Nov 2021

FISMA Update: What’s changing and why it matters

Fri, 29 Oct 2021

New industry study: 70% of teams skip security steps

Tue, 26 Oct 2021

How AppSec debt hurts your company – and how to make it stop

Fri, 22 Oct 2021

What is ethical hacking?

Fri, 15 Oct 2021

Stop compromising on web application security

Tue, 12 Oct 2021

CISA’s Zero Trust Maturity Model is a rallying cry for modern web app security

Fri, 08 Oct 2021