Web Security Blog

The risks of doing vulnerability testing and management for compliance only

Wed, 28 May 2025

In this instalment of CISO’s Corner, we deal with the pitfalls of mistaking compliance for security and see how adopting a risk-based mindset helps you stay secure in the real world while still checking all the right boxes.

Read more

Top 5 application security misconfigurations

Thu, 12 Oct 2023

Hacking the hackers: Borrowing good habits from bad actors

Mon, 02 Oct 2023

NIST Cybersecurity Framework gets user-friendly: Upcoming changes in CSF v2.0

Fri, 22 Sep 2023

Surviving the API apocalypse: How to defeat zombie APIs

Thu, 14 Sep 2023

PCI DSS v4.0 makes integrated application security a compliance requirement

Fri, 08 Sep 2023

DAST tools are only as good as their setup and support

Thu, 31 Aug 2023

Invicti Insights: Experiences and lessons learned from Black Hat USA 2023

Fri, 18 Aug 2023

Building accurate DAST into the CI/CD pipeline saves you time – and money

Fri, 11 Aug 2023

Cyber workforce shortages still loom large – but the cavalry is coming

Fri, 04 Aug 2023

SAST vs. DAST vs. IAST: Everything you always wanted to know but were afraid to AST

Wed, 26 Jul 2023

Invicti Insights: Lessons from high-profile breaches and security blunders

Wed, 19 Jul 2023

Making automated API vulnerability testing a reality

Wed, 12 Jul 2023