The Ultimate Guide to Application Security
A curated Irish edition of TechDay news, analysis, interviews, reviews, job moves, and related resources for Application Security.
What to know about Application Security
Application Security focuses on protecting software applications from vulnerabilities and cyber threats throughout their development and operational life cycles. This critical field addresses challenges such as runtime protection, secure coding practices, DevSecOps integration, API security, cloud-native environments, and mitigating attacks like DDoS, supply chain risks, and malicious bot traffic.
Exploring the latest stories in Application Security reveals how advancements like AI and automation are enhancing threat detection, vulnerability management, and developer workflows, while highlighting ongoing risks found in mobile apps, open source components, and cloud deployments. Readers can gain insights into best practices, emerging technologies, and strategies to safeguard applications against evolving cyber threats.
Whether you’re a developer, security professional, or business leader, staying informed about Application Security developments helps in building resilient software, maintaining compliance, and protecting user data in an increasingly complex digital landscape.
Analyst Insights
Research and market analysis connected to Application Security
Cycode launches agentic development lifecycle security
Cognizant launches Secure AI Services for enterprises
Check Point wins Frost & Sullivan recognition for WAF
Capsule Security raises $7 million to guard AI agents
Gigamon eyes AI-led surge in network observability
Featured News
Google Cloud CEO sets out enterprise AI agent plan
Enterprises will get one place to build, govern and run AI agents, as Google Cloud expands Gemini Enterprise across models, data and security.
'Human Risk' takes centre stage - Mimecast CEO
Mimecast chief warns human risk is now cybersecurity's 'eighth layer' as malicious insiders overtake negligence in Australian attacks.
UiPath Accelerates AI in Software Development and Testing
UiPath is pushing AI deeper into software testing, promising autonomous agents that transform quality assurance and developers' roles.
Grafana: Turning data chaos into developer efficiency and CFO savings
Grafana leans on AI-powered observability and Adaptive Telemetry to sharpen developer insight while slashing cloud bills by up to 50%.
Expert Columns
Interviews
Interviews and video coverage from the networkRecent Application Security News
Anthropic model can chain bugs into exploits, Cloudflare
The findings suggest AI-assisted bug hunting is edging closer to practical exploitation, raising the stakes for software teams racing to patch flaws.
Concentric AI adds Claude compliance auditing integration
Companies using Claude can now log prompts, responses and attachments for compliance, easing oversight of sensitive data shared by staff.
Synack report says vulnerability testing gap widens
Enterprises are testing only about 32% of their attack surface, leaving many assets outside regular security checks as threats grow faster.
HackerOne links validated flaws to Wiz cloud platform
Security teams may cut backlogs as validated HackerOne flaws are mapped into Wiz, linking exploit evidence to cloud assets for faster prioritisation.
MySQL exposures & slow fixes plague firms, study finds
Nearly half of organisations are leaving risky ports and services open, with midmarket firms taking up to 56 days to fix exposures.
HackerOne & Wiz link validated findings to cloud risk
Security teams can now rank cloud flaws by exploitability and impact, as validated HackerOne reports feed directly into Wiz's risk graph.
Sweet launches AI red-team agent to test attack paths
Security teams under pressure to prove real exploitability can now test live production systems for attack paths rather than theoretical flaws.
Intruder finds exposed MySQL databases in 26% of firms
The findings show many firms still leave internet-facing databases and admin tools open, giving attackers easy routes before flaws are even published.
Cisco open-sources Foundry Security Spec for AI testing
Security teams will be able to verify AI-generated vulnerability findings more reliably, as Cisco's framework tackles false positives and invented issues.
CyberCX report finds 29% of tests exposed severe flaws
AI systems and social engineering tests proved especially risky, as CyberCX found severe weaknesses in half and 77% of cases respectively.
Fortinet expands NVIDIA tie-up to secure enterprise AI
The integration aims to curb prompt injection and data leaks as enterprises push AI agents into production across cloud and on-premises systems.
Secure Code Warrior launches Bedrock security training
Developers using generative AI will get hands-on lessons on prompt injection and data leakage as AWS expands Bedrock adoption.
AI now routine in cyber attacks, Google report finds
Security teams face a broader threat as criminals and state-backed actors use generative AI to speed hacks, phishing and malware.
Sonatype joins Linux Foundation registry working group
Sonatype joins Linux Foundation registry working group to tackle funding, governance and security pressures as package downloads near 10 trillion.
Netskope launches AgentSkope AI agents for security teams
It aims to reduce alert fatigue for security teams, with one beta customer processing 14 million daily alerts in minutes instead of hours.
WatchGuard buys Perimeters.io in cloud security push
MSPs will gain a single platform for cloud threat detection as the deal widens WatchGuard's reach into identity and SaaS security.
KnowBe4 partners Secure Code Warrior on AI training
Organisations using AI in software development will get training on secure coding and governance as vulnerabilities and data risks mount.
OpenAI launches GPT-5.5-Cyber for vetted defenders
Vetted security teams will get fewer refusals on authorised tasks as OpenAI tightens access around its most permissive cyber model.
Rapid7 joins OpenAI cyber programme to speed defence
The tie-up could help security teams cut false alarms and patch faster as automated attacks shrink defenders’ reaction time.
Synack launches Sara AI Pentesting for wider coverage
The move aims to widen security coverage as firms struggle to test expanding attack surfaces quickly enough.