AI code assistants speed up development but add to risks

The AI CPU is generating code

New research from Apiiro shows that while AI code assistants are accelerating development times they're also increasing risks.

AI code assistants have seen rapid adoption since the launch of ChatGPT in November 2022. Microsoft reports that more than 150 million developers now use GitHub Copilot, up 50 percent over the past two years.

Continue reading

2024 broke records for ransomware attacks

Ransomware key cash

Ransomware attacks reached record levels throughout 2024 according to the latest State of Ransomware report from BlackFog.

LockBit, one of the most prominent ransomware gangs in recent years, remained the most active ransomware variant through 2024 affecting 603 victims. May was the busiest month, with nearly 200 attacks launched, accounting for 36 percent of all attacks that month.

Continue reading

99 percent of organizations experience API security issues

API

A surge in API adoption, driven by the need for organizations to modernize infrastructures and unlock new revenue streams, is contributing to the rise in API security risk according to a new report.

The study from Salt Security finds 99 percent of respondents encountered API security issues within the past 12 months and 55 percent slowed the rollout of a new application due to API security concerns.

Continue reading

Why API-first engineering is the way forward for software development

API development

British software developer and international public speaker on software development, Martin Fowler once famously said: “Any fool can write code that a computer can understand. Good programmers write code that humans can understand.” His book on Refactoring has been a best seller for decades and is a guide on how to transform code safely and rapidly, helping developers build better code. Exactly these same principles should apply when looking to develop an API-first approach to software engineering.

But first, what do we mean when we talk about an API-first approach? This is a software development method that prioritizes the design of APIs before writing any other code, instead of treating them as an afterthought. This is different from the traditional approach, where the application code is written first, and the API is added later.

Continue reading

Five ways data platforms are underpinning the second cloud revolution

Digital cloud

According to Gartner, over the next few years hybrid cloud will become the de facto approach for unlocking value from data. The projections are stark. Nine-in-ten organizations will adopt a hybrid cloud model by 2027, and end user spending globally on public cloud will grow by 21.4 percent this year alone, reaching more than $723 billion. Application services, system infrastructure services and Platform-as-a-Service (PaaS) will all see a boost in spending as well. By anyone’s money, these are huge numbers.

This second cloud revolution is being driven by data. When combined with analytics, data is a uniquely valuable asset for any business. If harnessed correctly, it can grow revenue, reduce costs, and entirely transform a business by opening up fresh market opportunities through the use of new technologies like GenAI.

Continue reading

Web DDoS attacks up over 500 percent

DDOS attack, cyber protection. virus detect. Internet and technology concept.

The total number of web DDoS attacks surged 550 percent last year compared to 2023, according to the latest report from Radware.

The average duration of network DDoS attacks increased 37 percent over 2023, with North America facing 66 percent of web application and API attacks.

Continue reading

Addressing the challenge of non-patchable security [Q&A]

System patching

While many organizations have solutions in place to identify patchable CVEs, non-patchable security issues such as misconfigurations continue to provide threat actors with consistent access points to exploit organizations.

We spoke to Jason Mar-Tang, field CISO at Pentera, to discuss the challenge of non-patchable security issues vs. CVEs, what makes them so much more difficult to identify, the challenges of remediation, and what standards organizations should implement to tackle this challenge.

Continue reading

Samsung 9100 PRO SSD delivers insane PCIe 5.0 speeds

IMG_1392

If you thought solid state drive manufacturers were going to be slowing down their progress, you should think again. Today, Samsung unveils its 9100 PRO series, and it’s insanely fast. Using PCIe 5.0, it achieves up to 14,800 MB/s read and 13,400 MB/s write speeds! That’s twice as fast as its predecessor. So, yeah, this is a pretty big deal.

There are two variants of the SSD -- the standard 9100 PRO and a version with a heatsink for better cooling. Samsung has equipped these drives with a power-efficient 5nm controller, reducing energy use by nearly 50 percent. Impressively, random read/write speeds can hit 2,200K/2,600K IOPS.

Continue reading

Forget Windows 12, Windows 11 2025 Edition is the Microsoft operating system we need!

Windows-11-2025-9

Every so often, we hear rumors about Microsoft’s next operating system, widely expected to be called Windows 12. The tech giant has been keeping quiet about its future plans, preferring instead to continue to update Windows 11, adding more AI features, and deprecating functionality it thinks we no longer need.

Although plenty of people still prefer Windows 10 to its successor, Windows 11 will be the only game in town in a matter of months when the older OS comes to its end of life later this year. Windows 11 isn’t bad -- far from it -- but it could be better, as evidenced by Windows 11 2025 Edition.

Continue reading

From fixing issues to fueling innovation: The growing business case for observability

Observability magnifier code

This year, embracing a leading observability practice will not only be a key priority for organizations but an essential competitive differentiator. Recent data shows that leading organizations with mature observability practices spend 38 percent more of their time on innovation, in contrast with organizations early on in their observability journey. This greater amount of time to focus on product innovation can equate to significant benefits for an organization, such as increased developer productivity, improved operational efficiency and more importantly winning market share.

2024 has shown us that the impact and business value of observability is expanding. It is evolving from a reactive practice to a proactive one where organizations not only use observability for troubleshooting issues but now also to inform their customer experience strategy and to fuel faster innovation.

Continue reading

How cloud security teams should think about AI

Thinking-about-security

According to estimates from Goldman Sachs, generative AI (GenAI) will constitute 10-15 percent of cloud spending by 2030, or a forecasted $200-300 billion (USD). The public cloud serves as the perfect vessel for delivering AI-enabled applications quickly, cost-effectively, and at scale. For organizations looking to profit from AI’s potential, the path effectively travels through the cloud.

For cloud security teams on the ground, however, the impact of AI can seem complicated. Understanding the challenges it presents, and the key capabilities it enables, can help them work smarter and more effectively. This article explores the three ways cloud security teams should think about AI to enhance protections, improve efficiency, and address resource constraints.

Continue reading

Photoshop for free? The new Adobe Photoshop iPhone app makes the dream a reality

Photoshop for iPhone

Adobe has launched a brand-new iPhone edition of its flagship Photoshop software. Enticingly, the app is free of charge! The company is clear from the offset that “Photoshop on the phone is not intended to replace Photoshop on the desktop”, but there is a lot here, nonetheless.

The new app goes much further than the existing Photoshop Express app, enabling creatives to use layers, masks, and the advanced Spot Healing Brush. For now, it is only owners of iPhones who are getting the free Photoshop treatment, but Android users will gain access later in the year.

Continue reading

Plugable officially launches PS-10CC 10-port USB-C charger with priority-based charging

IMG_1388

Plugable has launched the PS-10CC, a USB-C charger with 10 ports. Following a Kickstarter campaign in October, it goes on sale today for an introductory price of $84.95, which is less than its MSRP of $99.95.

Created to eliminate cable clutter and completely improve charging efficiency, the PS-10CC uses precise, real-time current sensing to allocate power to each port that needs it. Devices connected to the ports farthest to the left get charged faster. Users should consider this when plugging in laptops and phones so they receive priority.

Continue reading

86 percent of commercial codebases expose organizations to risk

Businesswoman in risk metering and management concept

Analysis of 965 commercial codebases across 16 industries during 2024 by Black Duck Software finds 86 percent contain open source software vulnerabilities and 81 percent high- or critical-risk vulnerabilities.

Black Duck's Open Source Security and Risk Analysis (OSSRA) report also shows that the number of open source files in an average application has tripled from around 5,300 in 2020 to more than 16,000 in 2024.

Continue reading

New solution automates fixing Linux vulnerabilities

Linux automation penguin

More than ever enterprises are turning to Linux solutions. But while the open source OS has a good reputation for security that doesn't mean that it’s invulnerable and it's important to stay on top of updates and patching.

Seal Security is launching Seal OS, a holistic solution designed to automatically fix vulnerabilities in both Linux operating systems and application code.

Continue reading

Load More Articles