Web Security Blog

The risks of doing vulnerability testing and management for compliance only

Wed, 28 May 2025

In this instalment of CISO’s Corner, we deal with the pitfalls of mistaking compliance for security and see how adopting a risk-based mindset helps you stay secure in the real world while still checking all the right boxes.

Read more

How bad is a missing Content-Type header?

Thu, 23 May 2024

Why Predictive Risk Scoring is the smart way to do AI in application security

Thu, 16 May 2024

How to choose the right application security tools

Fri, 10 May 2024

What is DevSecOps and how is it evolving?

Wed, 01 May 2024

AppSec prioritization goes proactive with AI-backed Predictive Risk Scoring

Tue, 23 Apr 2024

NIST CSF 2.0: The world’s favorite cybersecurity framework comes of age

Fri, 12 Apr 2024

The xz-utils backdoor: The supply chain RCE that got caught

Fri, 05 Apr 2024

Why DAST makes the perfect security posture gauge

Thu, 28 Mar 2024

Never trust an LLM: Prompt injections are here to stay

Thu, 14 Mar 2024

More than a box to tick: Meet the real DAST

Thu, 07 Mar 2024

Will autonomous hacking bots change cybersecurity forever?

Fri, 23 Feb 2024

How AI makes cybersecurity even more asymmetric

Fri, 16 Feb 2024