MiIke Hanley, the new GitHub CSO, sees myriad opportunities to have a positive influence on software security.
The nature of modern software development is that development teams have to rely on "blind trust" for some of the code components written by someone else. A new attack method showed how build systems could be tricked into pulling code from the wrong projects.
On the heels of yet another privacy incident where Facebook app developers received user data when they shouldn’t be, the social networking giant rolled out new terms and policies for developers.
In the rush to fix newer vulnerabilities, the older ones are left unaddressed. The resulting security debt increases the organization's risk of a breach, Veracode warned.