Articles by

hgoslin@veracode.com (hgoslin)

A Look Back at the Executive Order on Cybersecurity

It has officially been one year since the release of the Biden administration's Executive Order on Cybersecurity,...

Just Because You Don’t Use Log4j or Spring Beans Doesn’t Mean Your…

By now, you're probably all aware of the recent Log4j and Spring Framework vulnerabilities. As a...

Spring4Shell Vulnerability vs Log4Shell Vulnerability

On March 29, 2022, details of a zero-day vulnerability in Spring Framework (CVE-2022-22965) were leaked. For...

The Public Sector Has the Highest Proportion of Security Flaws of Any…

We recently launched the 12th annual edition of our State of Software Security (SOSS) report. To...

Shifting Log4j Discovery Right | Veracode

You hear a lot about shifting your application security (AppSec) left - in other words, shifting AppSec...

Veracode Achieves AWS Security Competency Status

We are proud to announce that we have recently achieved AWS Security Competency Partner status. This...

Announcing the 12th Volume of Our State of Software Security Report |…

The 12th volume of our annual State of Software Security (SOSS) report is now live! Rather...

58% of Orgs Are Using a Vulnerable Version of Log4j

On December 9, 2021, a zero-day vulnerability was discovered in Log4j 2.x. This vulnerability is of...

Want to stay up to date with the latest news?

We would love to hear from you! Please fill in your details and we will stay in touch. It's that simple!