Eureka DevSecOps Now Available on Plug and Play Perks
Vancouver, BC – December 9, 2025 – Eureka DevSecOps is now featured in the Plug and Play Perks marketplace, offering an exclusive package to help portfolio companies establish audit-ready application security programs. Exclusive Offer (Save $2,874) Plug and Play portfolio companies can access our complete application security platform plus expert assessment for a fraction of […]
Farshad on the Application Security Weekly Podcast: Lessons That The XZ Utils Backdoor Spells Out
Farshad Abasi was invited once again to speak on the Application Security Weekly Podcast, hosted by Mike Shema! In this episode, they talk about solutions and themes regarding the recent XZ Utils backdoor attack, as well as current AppSec affairs. Tune in to the episode below, and subscribe to show your support for the ASW […]
Agile, DevOps, and the Threat Modeling Disconnect: Bridging the Gap with Developer Insights
In 2008, my journey into application security and threat modeling began when I joined HSBC’s Global Software Development Centre as a Software Security Engineer. With a clear mission to integrate security within the application development lifecycle, I ventured into an arena where the dynamics of software development were rapidly evolving. As time passed, the transition […]
SAST, SCA, DAST, IAST, RASP: What They Are and How You Can Automate Application Security
Application security is an ongoing challenge throughout the entire software development life cycle (SDLC). Today, more and more development teams are shifting to Agile and DevOps SDLCs to rapidly build application to meet the rising demands from the business and consumers with little or no attention to security. In addition, open-source components are used to […]
Top 3 Security Challenges Devs Encounter When Building Secure Apps
There are a lot of tools (or categories of tools), that developers need to incorporate into their DevOps environment. Anyone in the AppSec field knows automation tools such as static application security testing (SAST), dynamic security testing (DAST), and Software Composition Analysis (SCA) have a lot of challenges. In this post, we discuss three of […]