Application Security Posture Management

Leveraging Cycode’s Complete ASPM to Strengthen Perforce Helix Core Security

March 13, 2025November 6, 2024 by Ron Amihai

As development environments grow more complex, securing version control systems like Perforce Helix Core is crucial to protect intellectual property and maintain code integrity…

Software Supply Chain Risks and How to Mitigate Them

March 13, 2025November 1, 2024 by Cycode Team

Keeping up with the rapidly evolving world of Application Security (AppSec) can feel like a full-time job…

Introducing ASPM University: The #1 Resource for AppSec and Product Security Pros

April 8, 2025October 29, 2024 by Cycode Team

Keeping up with the rapidly evolving world of Application Security (AppSec) can feel like a full-time job…

8 Key Insights From ASPM Nation 2.0

March 13, 2025October 9, 2024 by Cycode Team

ASPM Nation 2.0 brought together top CISOs, practitioners, and industry experts from companies like TikTok, Cisco, Roche, Intermex and more to discuss the future of Application Security Posture Management…

Why Application Security Posture Management is Essential for PCI-DSS 4.0

March 13, 2025October 2, 2024 by Cycode Team

For over two decades, the Payment Card Industry Data Security Standard (PCI-DSS) has defined security requirements for organizations that process, store, or transmit payment card data…

Why ASPM Requires an Independent Approach: Exploring the Role of ASPM vs. CNAPP | Part 1

March 13, 2025October 2, 2024 by Jimmy Xu

Exponential growth in code, an unmanageable attack surface as a result of Cloud + DevOps, accelerated development cycles…

Component #3 of 3 of a Complete ASPM — Posture Management

April 8, 2025December 18, 2024 by James Berthoty

I remember the first time I had to listen to a legacy vendor sales team pitch their “ASPM product” to me as a customer…

OpenSSH Vulnerability CVE-2024-6387: What You Need to Know

April 8, 2025July 2, 2024 by Alex Ilgayev

1 in 3 OpenSSH Servers Are Vulnerable – Protect Yourself Against CVE-2024-6387 A critical security vulnerability, identified as CVE-2024-6387, has been discovered in the OpenSSH server. This widespread vulnerability poses a significant threat to millions of systems globally. Dubbed “RegreSSHion,” this vulnerability enables remote unauthenticated code execution, potentially allowing attackers to gain unauthorized access and control … Read more

Unveiling AI-Driven Material Code Change Alerting

April 8, 2025June 25, 2024 by Roni Gurvich

Introduction We are thrilled to unveil the first-ever AI-driven technology designed to detect material code changes. This innovation, combined with our continuous scanning capabilities, transforms the way organizations manage their codebase, ensuring enhanced security, compliance, and operational integrity. What Is a Material Code Change? A material code change refers to significant modifications in a software’s … Read more

5 Reasons to Read Code Resilience in the Age of ASPM

April 8, 2025June 20, 2024 by Julie Peterson

Cycode’s new book Code Resilience in the Age of ASPM is a comprehensive resource for any security practitioner. Whether you’re a seasoned pro who has seen it all or someone who’s new to cybersecurity, Code Resilience in the Age of ASPM is full of wisdom and time-tested advice from experts who have secured some of the largest global enterprises. … Read more

State of ASPM 2025

The 2025 Product Security All-Stars

Securing Software
Development In The AI Era