How to secure your Heroku application
Lou Bichard
I’m guessing you’re here because you’ve got an application up on Heroku, and you’re wondering what steps you need to take to keep it secure. If so, then awesome—you’re in…
Browsing Category
Security
89 posts
What NIST recommends for cybersecurity and applications
Justin Reynolds
Cybersecurity is a growing concern for businesses of all sizes and industries—and for good reason. As cybersecurity threats and attacks increase each year and more businesses move into software, the…
The most common types of ATO attacks
Eric
As a security owner, you need to protect your users against a wide variety of attacks. Many engineers spend a great deal of time focusing on big-picture attacks. They want…
Security interview: Dan Robinson and Jerry van Leeuwen on prioritizing security at Heap
Josh
Recently, we sat down with Dan Robinson, CTO, and Jerry van Leeuwen, DPO, from Heap, to discuss their approaches to security and what they’ve learned as far as security goes…
Network asset discovery and why you need it for your applications
Arnab Roy Chowdhury
In today’s business climate, almost all companies are looking for a way to better leverage software and the power of applications. They’re developing new applications at an increasing pace using…
Developer security best practices: how to validate input data in Python
Boris
If you’re building an application that accepts user or third-party input, a crucial consideration for security is ensuring that you properly validate that input. You want to make sure that…
5 security best practices for Java
When it came along in the mid-1990s, Java promised a revolution in programming languages. At the time, a great deal of business programming took place in C or C++. Anyone…
Developer security best practices: protecting against timing attacks
One of the great things about security is that there is always more to learn. When you’re protecting your applications and users, understanding the kinds of attacks bad actors may…
How to choose the right pentester for you
There are a variety of reasons your company might look to hire a penetration tester. For many companies, their first foray into penetration testing comes at the request of a…
Kubernetes security best practices
Christian Meléndez
There’s no doubt that Kubernetes adoption has increased a lot since its first release. But, as Ian Coldwater said in their talk about abusing the Kubernetes defaults: Kubernetes is insecure…