Pegasystems announced the general availability of Pega Infinity ’24.1™.
Backslash announced the launch of the Backslash Weaknesses Database, an initiative designed to elevate awareness about the persisting relevance of vulnerabilities.
In the fast-evolving landscape of cybersecurity, it's crucial to stay vigilant, and our database is here to shed light on CWE (Common Weakness Enumeration) trends. This repository serves as a single pane of glass, providing a comprehensive view of all CWEs. Backslash's goal is to help security professionals and development teams better understand and prepare for evolving threats.
Why Backslash Weakness Database?
Despite advancements in security practices, certain vulnerabilities continue to pose threats. The Backslash Weaknesses Database aims to empower security professionals with a more comprehensive understanding of prevailing trends and enhance their preparedness in the face of potential threats.
Backslash's motivation stems from a desire to dispel the misconception that specific vulnerabilities, such as SQL injections, have become obsolete. Contrary to popular belief, these vulnerabilities remain relevant, and our database serves as a testament to their enduring significance.
Backslash's goal is to provide security teams with the knowledge necessary to fortify their defenses against both longstanding and emerging vulnerabilities. By recognizing the ongoing relevance of specific vulnerabilities and presenting a holistic view of CWE trends, Backslash fosters a proactive approach to cybersecurity.
Key Features:
■ Top Stubborn CWEs: Explore the recurring vulnerabilities recognized by MITRE, gaining insights into the most prevalent weaknesses that persist over time.
■ Detailed Information: Each CWE is accompanied by a detailed description, best practices for prevention, language-wise distribution, recently published CVEs, and data from GHSA.
Industry News
Mend.io and Sysdig unveiled a joint solution to help developers, DevOps, and security teams accelerate secure software delivery from development to deployment.
GitLab announced new innovations in GitLab 17 to streamline how organizations build, test, secure, and deploy software.
Kobiton announced the beta release of mobile test management, a new feature within its test automation platform.
Gearset announced its new CI/CD solution, Long Term Projects in Pipelines.
Rafay Systems has extended the capabilities of its enterprise PaaS for modern infrastructure to support graphics processing unit- (GPU-) based workloads.
NodeScript, a free, low-code developer environment for workflow automation and API integration, is released by UBIO.
IBM announced IBM Test Accelerator for Z, a solution designed to revolutionize testing on IBM Z, a tool that expedites the shift-left approach, fostering smooth collaboration between z/OS developers and testers.
StreamNative launched Ursa, a Kafka-compatible data streaming engine built on top of lakehouse storage.
GitKraken acquired code health innovator, CodeSee.
ServiceNow introduced a new no‑code development studio and new automation capabilities to accelerate and scale digital transformation across the enterprise.
Security Innovation has added new skills assessments to its Base Camp training platform for software security training.
CAST introduced CAST Highlight Extensions Marketplace — an integrated marketplace for the software intelligence product where users can effortlessly browse and download a diverse range of extensions and plugins.
Red Hat and Elastic announced an expanded collaboration to deliver next-generation search experiences supporting retrieval augmented generation (RAG) patterns using Elasticsearch as a preferred vector database solution integrated on Red Hat OpenShift AI.
Traceable AI announced an Early Access Program for its new Generative AI API Security capabilities.