Ken Prole, Author at Code Dx

Beating the AppSec Bottleneck

Apr 15, 2019 | AppSec Classroom, Blog

An article by Ken Prole, CTO of Code Dx, was published in the Security Today magazine’s April 2019 edition. Download full text After a series of high-profile cyberattacks, most organizations have adopted application security practices when they develop software....

Everything you need for PCI compliance scan success

Apr 2, 2019 | Security Threats

If your company handles payment transactions of any type, then you’re familiar with the Payment Card Industry Data Security Standard (PCI DSS)—a group of security standards designed to create and maintain a secure environment for any company that accepts, processes,...

The perfect union: Vulnerability Assessment and Penetration Testing (VAPT)

Feb 6, 2019 | Software Exploits

One hundred percent—all of the applications tested by Positive Technologies—had some kind of vulnerability. You might think, “Yeah, but how many of those were real, critical vulnerabilities?” Well, 94 percent of web applications tested contained a high-severity...

Predicted web application vulnerabilities and cybersecurity trends for 2019

Dec 13, 2018 | News, Software Exploits

Web application attacks are on the rise. A recent study found that they were the primary cause of reported breaches in 2017 and Q1 2018. This marked increase is partly due to the greater variety in web application vulnerabilities, as new attack vectors are found and...

Code reuse: How to reap the benefits and avoid the dangers

Nov 12, 2018 | OWASP

Code reuse (or software reuse) is defined exactly as one would expect: reusing code that already exists either within your organization or externally when developing new software. The existing code may be reused to perform the same or very similar function. There are...

Don’t leave security behind in your CI/CD environment

Oct 22, 2018 | Security Threats, Software Exploits, Software Vulnerabilities

Continuous Integration (CI) and Continuous Delivery (CD), or CI/CD, are part of the Agile and DevOps approach to software development. The most prominent aspect of Agile development—and its most important rule—is that it requires software development to be responsive...

The importance of penetration testing and vulnerability assessments for web applications

Sep 13, 2018 | Software Development

The 2018 Global Security Report from Trustwave found that all web applications are vulnerable to attack. Yes, you read that right. All applications had at least one vulnerability, and the average number of vulnerabilities found per application was eleven. The report...

Smartphone cyber attacks are on the rise: Tips to improve mobile application security

Jul 5, 2018 | Blog, Software Vulnerabilities

Everywhere you look, people are on their smartphones. These devices have become a permanent fixture in our lives. We spend more time on our smartphones than we do on our desktops, making mobile devices a bigger target for cyber attacks. To make matters worse, the vast...

How to keep your banking apps compliant under the new NYDFS cybersecurity regulations

Jul 2, 2018 | Blog, Security Threats

Some predict that cybercrimes will cost $6 trillion in damages per year by 2021. In response, governments around the world have decided to fight back against cyberattacks and counter threats with a host of new cybersecurity regulations for financial services....

How IAST, RASP, and now HAST can enhance application security

Apr 4, 2018 | Security Threats

Information security breaches continue to make headlines. 2017 and early 2018 saw several major organizations such as Equifax and even the IRS fall prey to hackers who exploited security vulnerabilities. Attacks come fast, starting within one day of Common...