The Ultimate Guide to Application Security
A curated Irish edition of TechDay news, analysis, interviews, reviews, job moves, and related resources for Application Security.
What to know about Application Security
Application Security focuses on protecting software applications from vulnerabilities and cyber threats throughout their development and operational life cycles. This critical field addresses challenges such as runtime protection, secure coding practices, DevSecOps integration, API security, cloud-native environments, and mitigating attacks like DDoS, supply chain risks, and malicious bot traffic.
Exploring the latest stories in Application Security reveals how advancements like AI and automation are enhancing threat detection, vulnerability management, and developer workflows, while highlighting ongoing risks found in mobile apps, open source components, and cloud deployments. Readers can gain insights into best practices, emerging technologies, and strategies to safeguard applications against evolving cyber threats.
Whether you’re a developer, security professional, or business leader, staying informed about Application Security developments helps in building resilient software, maintaining compliance, and protecting user data in an increasingly complex digital landscape.
Analyst Insights
Research and market analysis connected to Application Security
Software Improvement Group named Gartner leader on debt
Cycode launches agentic development lifecycle security
Cognizant launches Secure AI Services for enterprises
Check Point wins Frost & Sullivan recognition for WAF
Capsule Security raises $7 million to guard AI agents
Featured News
Check Point Technologies: On vigilance, Mythos and beyond
AI-driven vulnerability scanning is forcing firms to rethink complacency as Check Point says existing defences still help against Mythos.
Exclusive: Reco COO on securing the AI inside your SaaS stack
Reco COO Zoe Hillenmeyer says enterprises typically underestimate their AI agent exposure by a factor of ten and that gap is widening.
Google Cloud CEO sets out enterprise AI agent plan
Enterprises will get one place to build, govern and run AI agents, as Google Cloud expands Gemini Enterprise across models, data and security.
'Human Risk' takes centre stage - Mimecast CEO
Mimecast chief warns human risk is now cybersecurity's 'eighth layer' as malicious insiders overtake negligence in Australian attacks.
UiPath Accelerates AI in Software Development and Testing
UiPath is pushing AI deeper into software testing, promising autonomous agents that transform quality assurance and developers' roles.
Grafana: Turning data chaos into developer efficiency and CFO savings
Grafana leans on AI-powered observability and Adaptive Telemetry to sharpen developer insight while slashing cloud bills by up to 50%.
Expert Columns
Interviews
Interviews and video coverage from the networkRecent Application Security News
Cybanetix launches managed AI service for business risk
Businesses adopting AI now face a single service aimed at filling gaps in governance, monitoring and incident response across workflows.
Secure Code Warrior launches AI governance learning
Companies can now tie AI code-use risks to developer training, with Secure Code Warrior aiming to prove compliance at commit level.
Windows 11 sandbox flaw lets attackers escape with one click
Microsoft patched a CVE-2025-59199 flaw in October after researchers showed a single click could let low-integrity code escape Windows 11's sandbox.
DevOps platform vulnerabilities rise in 2025 report
More than half of patched flaws in major DevOps tools were high or critical in 2025, putting software supply chains at greater risk.
IBM & Red Hat launch £5bn open-source security plan
The move targets vulnerabilities in software used by large firms, as AI makes it easier to find and exploit flaws.
RevEng.AI raises USD $15 million to secure software
The funding will help firms spot hidden flaws and backdoors in compiled code as AI-generated software and supplier risk raise security concerns.
Google Cloud launches AI Threat Defence against attacks
The new service aims to help firms keep pace as AI-powered criminals automate attacks faster than security teams can patch flaws.
Google flags KnowledgeDeliver flaw & Chinese phishing surge
A zero-day in a widely used Japanese learning platform let hackers plant malware, while Chinese phishing services are now bypassing one-time codes.
CrowdStrike disrupts Glassworm botnet targeting developers
Developers using open-source tools face heightened supply-chain risk after the botnet lost all four of its command channels.
Bugcrowd launches RL environments for AI security training
The platform aims to help AI developers move beyond benchmark tests, as models struggle to tackle real-world vulnerabilities safely and reliably.
Socket raises USD $60 million to tackle code risks
The round values the software supply chain security company at USD $1 billion as AI coding boosts the flow of third-party code into production.
1Password expands OpenAI Codex deal for secure credentials
The new integration keeps passwords out of prompts and repos, reducing the risk of leaks as AI coding agents move into production workflows.
Terra adds continuous testing for network infrastructure
Security teams can now assess network, web and AI weaknesses together as Terra Security broadens continuous validation to infrastructure.
TAC Security adds Anthropic & Perplexity AI clients
Independent security checks are gaining urgency as fast-growing AI and software firms face rising scrutiny from customers, partners and regulators.
Exploitation overtakes social engineering in Rapid7 report
Exposed systems are becoming the main target, as Rapid7 says flaws were used in 38% of incidents and patch windows shrank to five days.
GitLab 19.0 adds secrets manager & AI workflow tools
The release gives security teams and developers new controls for credentials, merge requests and supply chain oversight as AI use grows.
Spring developers lack container security knowledge
Most Spring teams are exposed to container risks as 64% of respondents were unaware Dockerfile choices can affect security.
OpenSSF adds five members & new security resources
Members are backing tougher open source security as OpenSSF expands guidance on regulation, Python coding and AI-driven vulnerability tools.
Orchid warns of hidden identity gap as AI risks rise
Most enterprise access still sits outside formal controls, leaving AI agents and unmanaged accounts to widen security and compliance risks.
Cloudflare launches Claude agent environments with Anthropic
Businesses can now run Claude-powered agents in isolated Cloudflare sandboxes, with tighter controls for private data, audit trails and scaling.