Security News

Winamp has released its first release candidate after four years in development, officially bringing the popular media player out of beta. Winamp ceased development after version 5.666 was released in 2013.

Software engineers should take a proactive approach to security during each phase of the SDLC. Understanding secure software development life cycle. The software development life cycle is not a one-off process that software developers can implement in a linear form.

The report reveals that while analysts expect a sharp rise in cloud-native development globally, 53% of respondents still don't know much about it. "Our research reveals that most businesses don't know enough about cloud-native's challenges and don't have the staff to successfully implement it. The answer lies in high-performance low-code tools that can help speed and simplify the path forward and dramatically improve the way they build and manage apps for the future."

This comprehensive study of nearly 700 technologists, now in its fourth year, explored the most urgent challenges development teams face when building applications with open source. It also reveals new insights into how confident technologists are in their organizations' current open source management practices, and in the open source components and languages they use more generally.

A research from Wabbi and IDG found that companies which utilize continuous security have seen a 50% decrease in vulnerabilities. As the number of attacks increase daily, it has become essential to integrate security within the SDLC. Most respondents agree it is essential to integrate security throughout the development lifecycle, yet only 15% report it being integrates from the beginning.

Wabbi published new research with IDG that finds companies utilizing continuous security have decreased vulnerabilities by 50%. The study focused on the integration of development and security, as well as the benefits of continuous security. The importance of security integration within the SDLC is clear: 98% of respondents place high importance on integrating security throughout the development lifecycle, yet only 15% report that security is always integrated from the beginning of the development lifecycle.

Cloudreach released data highlighting the latest cloud technology trends, underscoring the impact the cloud skills gap is having on businesses. Multi-cloud capabilities, cloud system development, and cloud governance were the top three areas most impacted by the skills gap, according to respondents.

The report shows that the most successful engineering teams routinely meet four key benchmarks. By setting up a robust test suite, you can confidently rely on your tooling no matter the time of year, allowing teams to thrive and innovate even when team members are out of office.

Checkmarx released the UK findings of its report which found that 45% of organizations have suffered at least two security breaches as a direct result of a vulnerable application. Alongside this, the report discovered 34% of UK organizations who had experienced a security breach relating to an application in the year preceding the survey have laid off employees seen as bearing responsibility.

Cybersecurity researchers have unpacked a new Golang-based botnet called Kraken that's under active development and features an array of backdoor capabilities to siphon sensitive information from compromised Windows hosts. The botnet - not to be confused with a 2008 botnet of the same name - is perpetuated using SmokeLoader, which chiefly acts as a loader for next-stage malware, allowing it to quickly scale in size and expand its network.