The Rise of GenAI Code Assistants and the Security Risks Lurking Beneath the Surface
May 29, 2025
Itay Nussbaum

Over the past two years, code assistants based on generative AI have transformed software coding, accelerating the generation of code on an unprecedented level. Developers are deploying more code than ever, but at a cost: exponential growth in security vulnerabilities. New research points to a 3X increase in repositories containing Personally Identifiable Information (PII) and payment data, a 10X increase in APIs without authorization and input validation, and more sensitive API endpoints exposed, all threats proliferated by AI-generated code. Though AI code assistants boost productivity, they possess no understanding of organizational risk, compliance policies, or security best practices, leaving companies more exposed ...

Fix It or Face the Consequences: CISA's Memory-Safe Muster
May 28, 2025
Matias Madou

CISA's Product Security Bad Practices paper is one that every company should review as it details the "exceptionally risky software development activities" that are all too common in the industry ... While CISA's efforts can help companies navigate the "need for speed" in a fast-moving DevOps environment, IT and security leaders across the private sector must do their part to prepare their companies for the necessary changes ...

Gartner: 77% of Engineering Leaders Identify AI Integration in Apps as Major Challenge
May 27, 2025

More than three-quarters (77%) of engineering leaders identify building AI capabilities into applications to improve features and functionality as a significant or moderate pain point, according to a survey by Gartner. The survey also found that the use of AI tools to augment software engineering workflows was the second largest pain point ...

Cybersecurity Awesomeness Podcast - Episode 110: Supply Chain Attacks
May 23, 2025

In Episode 110 of the Cybersecurity Awesomeness Podcast, Chris Steffen and Ken Buckler from EMA discuss the recent news about extra devices installed on foreign made products that have no purpose other than to be exploited by a bad actor ...

Beyond Traditional Autoscaling: The Future of Kubernetes in AI Infrastructure
May 22, 2025
Maxim Melamedov

Kubernetes was not initially designed with AI's vast resource variability in mind, and the rapid rise of AI has exposed Kubernetes limitations, particularly when it comes to cost and resource efficiency. Indeed, AI workloads differ from traditional applications in that they require a staggering amount and variety of compute resources, and their consumption is far less consistent than traditional workloads ... Considering the speed of AI innovation, teams cannot afford to be bogged down by these constant infrastructure concerns. A solution is needed ...

4 Key AI-Driven Cyber Threats - and Defensive Strategies
May 21, 2025

As AI reshapes industries, it has also erased the lines between truth and deception in the digital world. The AI Security Report 2025(link is external) from Check Point® Software Technologies Ltd.(link is external) uncovers four core areas where this erosion of trust is most visible ...

The Disconnect Between Perception and Reality in Software Architecture Management
May 20, 2025

While nearly two in three organizations (63%) claim architecture is integrated throughout development (from design to deployment and beyond), more than half (56%) have documentation that doesn't match the architecture in production, according to the 2025 Architecture in Software Development study from vFunction.

Nearly Half of Development Teams Now "Own" Application Security
May 19, 2025

Almost half (49%) of CISOs say buyers now factor application security (AppSec) into purchasing decisions, according to A CISO's Guide to Steering AppSec in the Age of DevSecOps, a report from Checkmarx. In fact, in nearly half of software-based product companies, security oversight has moved outside the CISO's office entirely. As application complexity and scale grow — driven by AI, microservices and hybrid application architectures — engineering teams are increasingly accountable for ensuring secure, scalable delivery ...

Cybersecurity Awesomeness Podcast - Episode 109: Using AI for Cyberattacks
May 16, 2025

In Episode 109 of the Cybersecurity Awesomeness Podcast, Chris Steffen and Ken Buckler from EMA discuss how the bad guys are using AI for cyberattacks ...

Why Secure Code Knowledge Matters for Developers
May 15, 2025
John Campbell

Developers are leveraging AI to accelerate the software development lifecycle, enabling them to automate repetitive coding tasks and generate substantial amounts of code in a fraction of the usual time. However, despite the numerous production advantages that AI has brought to organizations, it has simultaneously made it easier for less skilled hackers to infiltrate company systems with AI malicious code ...

2025: The Year of AI Adoption for Test Automation
May 14, 2025

QA teams are experiencing increasing pressure to accelerate release cycles, driven by AI-powered development, while maintaining high-quality standards, according to the 2025 Testing in DevOps Report from mabl ...

The Hidden Dangers of Artifactory Tokens: What Every Organization Should Know
May 13, 2025
Dwayne McDaniel

You might not hear about Artifactory tokens in mainstream security discussions, but here's a troubling reality: these tokens are corporate security's hidden Achilles' heel. Unlike many leaked credentials that turn out to be harmless personal access tokens or defunct keys, Artifactory tokens almost always lead directly to critical corporate assets ...

Gartner: Generative AI Redefining Role of Software Engineering Leaders
May 12, 2025

Generative AI (GenAI) is revolutionizing the managerial responsibilities of software engineering leaders, who must adapt to its impact on productivity, recruitment processes, and ethical considerations. The technology is perceived primarily as a cost-reduction tool, but leaders should emphasize its role as a force multiplier that enhances team efficiency rather than replacing staff ...

Cybersecurity Awesomeness Podcast - Episode 108: RSA Conference Recap
May 09, 2025

In Episode 108 of the Cybersecurity Awesomeness Podcast, Chris Steffen and Ken Buckler from EMA recap the RSA Conference ...

How to Prevent Your Security Tools from Turning into Exploits
May 08, 2025
Brian McHenry

Security tools left running with weak configurations are a daily occurrence, as common as your morning brew. Breaches don't always start with flashy zero-days or clever phishing campaigns. They often begin with tools you trust; weak access controls, outdated configurations, and carelessness in setup make them prime targets for malicious actors ...

Industry News

AI-Powered Defense at the Edge: Check Point Launches New Branch Office Security Gateways with 4x Faster Threat Prevention Performance
May 29, 2025
Sauce Labs Releases iOS 18 Testing on Virtual Device Cloud
May 29, 2025
Infragistics Ultimate 25.1 Released
May 29, 2025
CIQ Establishes Open Source Program Office
May 29, 2025
Check Point Accelerates Threat Detection and Response with AI-Powered Security Management for the Modern Enterprise
May 28, 2025
Salesforce Signs Definitive Agreement to Acquire Informatica
May 28, 2025
Red Hat and Google Cloud Extend Alliance on Agentic AI
May 28, 2025
Mirantis k0rdent Enterprise and Mirantis k0rdent Virtualization Released
May 28, 2025
Snyk Announces AI Trust Platform
May 28, 2025
Bit Cloud Launches Hope AI
May 28, 2025
Check Point to Acquire Veriti to Transform Threat Exposure Management and Reduce Organizations' Cyber Attack Surface
May 27, 2025
LambdaTest Introduces Automation MCP Server
May 27, 2025
Next-Gen Security Operations Center Capabilities Added to DefectDojo Pro
May 27, 2025
Check Point Software Technologies Named One of America's Best Cybersecurity Companies by Newsweek and Statista
May 22, 2025
Red Hat Introduces AI-Powered Management and Extends Container-Native Reach for Red Hat Enterprise Linux
May 22, 2025
All Industry News ...
Subscribe to APMdigest Industry News

BIZDEVOPS Blog

New EMA Report: OpenTelemetry's Emerging Role in IT Performance and Availability
April 02, 2025
Pete Goldin
DEVOPSdigest
6 AI Trends Shaping the Future of DevOps in 2025
March 26, 2025
Azin Asgarian
Georgian
The AI Jobs Tango Begins in Earnest
March 19, 2025
Tiago Miyaoka
Andela
Now Is the Time to Transform DevOps Security
March 17, 2025
Srinivasa Raju Pakalapati
Insights into Open Source Software Usage and Security
March 11, 2025
David A. Wheeler
OpenSSF
How to Make Security Auditing an Important Part of Your DevOps Processes
March 04, 2025
Nazy Fouladirad
Tevora
Exploring the Power of AI in Software Development - Part 18: 2025 Predictions and Beyond
December 16, 2024
Pete Goldin
DEVOPSdigest
Exploring the Power of AI in Software Development - Part 17: 2025 Predictions and Beyond
December 12, 2024
Pete Goldin
DEVOPSdigest
Exploring the Power of AI in Software Development - Part 16: 2025 Predictions and Beyond
December 11, 2024
Pete Goldin
DEVOPSdigest
Exploring the Power of AI in Software Development - Part 15: 2025 Predictions and Beyond
December 10, 2024
Pete Goldin
DEVOPSdigest
Exploring the Power of AI in Software Development - Part 14: 2025 Predictions and Beyond
December 09, 2024
Pete Goldin
DEVOPSdigest
DevOps in the Cloud: Leveraging Cloud Services for Optimal DevOps Practices
November 20, 2024
Ajay Kumar Mudunuri
Cigniti Technologies
Exploring the Power of AI in Software Development - Part 13: More Recommendations
November 14, 2024
Pete Goldin
DEVOPSdigest
Exploring the Power of AI in Software Development - Part 12: More Recommendations
November 13, 2024
Pete Goldin
DEVOPSdigest
Exploring the Power of AI in Software Development - Part 11: Recommendations
November 12, 2024
Pete Goldin
DEVOPSdigest
All BIZDEVOPS Blogs ...

Vendor Forum

The Rise of GenAI Code Assistants and the Security Risks Lurking Beneath the Surface
May 29, 2025
Itay Nussbaum
Apiiro
Fix It or Face the Consequences: CISA's Memory-Safe Muster
May 28, 2025
Matias Madou
Secure Code Warrior
Beyond Traditional Autoscaling: The Future of Kubernetes in AI Infrastructure
May 22, 2025
Maxim Melamedov
Zesty
Why Secure Code Knowledge Matters for Developers
May 15, 2025
John Campbell
Security Journey
The Hidden Dangers of Artifactory Tokens: What Every Organization Should Know
May 13, 2025
Dwayne McDaniel
GitGuardian
How to Prevent Your Security Tools from Turning into Exploits
May 08, 2025
Brian McHenry
Check Point Software
Shift Up: The Next Evolution in DevOps
May 06, 2025
David Brooks
Copado
Code Under Fire: Surging Attack Trends Are Impacting Apps and APIs
May 05, 2025
Steve Winterfeld
Akamai
Gap Widening Between Infrastructure Automation Perception and Reality
April 30, 2025
Pawel Hytry
Spacelift
Value Stream Management a Key Driver in Digital Transformation
April 28, 2025
Jean-Louis Vignaud
Broadcom
Source Code Theft: A Developer's Guide
April 24, 2025
Brian McHenry
Check Point Software
Git Shipping Faster: Software Delivery Metrics that Drive Business ROI in 2025
April 22, 2025
Rob Zuber
CircleCI
Balancing AI Workers of the Future with Human Talent of Today in Software Development
April 21, 2025
Jason Beres
Infragistics
JDK 24: The Magic Number Release That's Supercharging Java
April 17, 2025
Simon Ritter
Azul
Where Great Software Begins: 5 Best Practices for a Smarter Design Phase
April 16, 2025
Laura Kennedy
SmartBear
All Vendor Forum Blogs ...

Editor Blog

Apiiro Product Manager Joins the Vendor Forum
May 29, 2025
Zesty Joins the Vendor Forum
May 22, 2025
Akamai Advisory CISO Joins the Vendor Forum
May 05, 2025
Spacelift Joins the Vendor Forum
April 30, 2025
Lenses.io Joins the Vendor Forum
April 15, 2025
All Editor Blogs ...