Vulnerability scanning is a staple of information security, but no software is perfect. Vulnerabilities are discovered on a daily basis — possibly exposing critical systems or data to exploit and ...

In brief: Open-source development projects often must rely on many external dependencies, saving developers the work of building new functionality from scratch. Google's new tool is the latest part of ...

eWEEK content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More. Database security firm Sentrigo has added vulnerability ...

eSpeaks’ Corey Noles talks with Rob Israch, President of Tipalti, about what it means to lead with Global-First Finance and how companies can build scalable, compliant operations in an increasingly ...

If you're worried about the security of your database -- but can't afford a full-blown vulnerability assessment right now -- you're in luck. Imperva is now offering a free database vulnerability ...

Securing the software supply chain is an increasingly complex and time-consuming challenge for enterprises. To help developers find vulnerability data for open source components, Google launched ...

Open source Trivy plugs into the software build process and scans container images and infrastructure-as-code files for vulnerabilities and misconfigurations. Attacks on cloud-native infrastructures ...

Organizations handle vulnerability management in various ways, from training and best-practice implementations to filtering out all but the most dangerous threats. Here's a look at some of today's ...

Orbitz CISO Ed Bellis explains how the proliferation of vulnerability assessment products and services has created chaos, and how SCAP may be the answer. It’s safe to say that vulnerability assessment ...

A five-year study has concluded with a sobering fact for businesses using on-premise servers: close to half contain vulnerabilities that may be ripe for exploitation. Imperva released the results of ...