Red Hat announced jointly-engineered, integrated and supported images for Red Hat Enterprise Linux across Amazon Web Services (AWS), Google Cloud and Microsoft Azure.
Rise of Free AI Tools Contributes to Surge in Sophisticated Attacks on Client-Side Applications
May 01, 2025
As organizations race to deliver apps at an unprecedented pace, the rise of freely available AI tools with sophisticated capabilities has made it easier than ever for threat actors to effortlessly reverse-engineer, analyze, and exploit applications at an alarming scale.
Most (83%) applications are under constant attack, a nearly 20% increase from last year, with attack rates surging across all industries, most significantly in telecom (91%), FinServ (87.5%), automotive (86%), and healthcare (78.5%), according to the State of App Sec Threat Report from Digital.ai.
While Android apps have historically been targeted more often (90.4%), the gap has narrowed as iOS attacks increased (88.1%), with the rise in jailbreaking and advanced exploitation techniques.
Derek Holt, CEO, Digital.ai, said, "We live in an app-first world that is shaping our lives, dominating brands, and transforming daily interactions between businesses and consumers. For enterprises, apps represent a gainful bridge to their consumers and employees, but for threat actors, these apps represent lucrative targets. Today, we see more attackers expanding their focus to target not just flagship apps but secondary apps, plugins, add-ons, and more. As AI exponentially increases the capabilities of threat actors, businesses must dramatically increase their ability to protect and monitor all applications against reverse engineering, tampering, and man-in-the-middle attacks. Delivering applications without these security protections is like leaving your front door unlocked and wide open."
The report results highlight that no sector is immune — even previously less-targeted industries, such as healthcare and automotive, are now under significant threat.
Three coinciding trends are contributing to the growing frequency of attacks:
■ Tool democratization is expanding. Reverse-engineering tools (Frida, Ghidra, etc.) continue to proliferate and attract large communities of users likely to share ideas, tips, and tricks.
■ The proliferation of AI tools used by threat actors. GenAI assists in both malware development (more malware, created faster) and in source code analysis.
■ Apps are growing at an unprecedented rate. The growing attack surface not only increases the total number of attacks due to incomplete security coverage but also provides fertile ground for threat actors to thrive. White-hat and black-hat hackers typically learn by doing, and the rapidly escalating number of apps offer ample opportunities to hone their skills.
Organizations that have implemented app protection measures are staying ahead of increasingly sophisticated attacks, while those without these defenses remain vulnerable targets.
Industry News
May 21, 2025
Komodor announced the integration of the Komodor platform with Internal Developer Portals (IDPs), starting with built-in support for Backstage and Port.
May 21, 2025
Operant AI announced Woodpecker, an open-source, automated red teaming engine, that will make advanced security testing accessible to organizations of all sizes.
May 21, 2025
As part of Summer '25 Edition, Shopify is rolling out new tools and features designed specifically for developers.
May 21, 2025
Lenses.io announced the release of a suite of AI agents that can radically improve developer productivity.
May 20, 2025
Google unveiled a significant wave of advancements designed to supercharge how developers build and scale AI applications – from early-stage experimentation right through to large-scale deployment.
May 20, 2025
Red Hat announced Red Hat Advanced Developer Suite, a new addition to Red Hat OpenShift, the hybrid cloud application platform powered by Kubernetes, designed to improve developer productivity and application security with enhancements to speed the adoption of Red Hat AI technologies.
May 20, 2025
Perforce Software announced Perforce Intelligence, a blueprint to embed AI across its product lines and connect its AI with platforms and tools across the DevOps lifecycle.
May 20, 2025
CloudBees announced CloudBees Unify, a strategic leap forward in how enterprises manage software delivery at scale, shifting from offering standalone DevOps tools to delivering a comprehensive, modular solution for today’s most complex, hybrid software environments.
May 20, 2025
Azul and JetBrains announced a strategic technical collaboration to enhance the runtime performance and scalability of web and server-side Kotlin applications.
May 19, 2025
Docker, Inc.® announced Docker Hardened Images (DHI), a curated catalog of security-hardened, enterprise-grade container images designed to meet today’s toughest software supply chain challenges.
May 19, 2025
GitHub announced that GitHub Copilot now includes an asynchronous coding agent, embedded directly in GitHub and accessible from VS Code—creating a powerful Agentic DevOps loop across coding environments.
May 19, 2025
Red Hat announced its integration with the newly announced NVIDIA Enterprise AI Factory validated design, helping to power a new wave of agentic AI innovation.
May 19, 2025
JFrog announced the integration of its foundational DevSecOps tools with the NVIDIA Enterprise AI Factory validated design.
May 15, 2025
GitLab announced the launch of GitLab 18, including AI capabilities natively integrated into the platform and major new innovations across core DevOps, and security and compliance workflows that are available now, with further enhancements planned throughout the year.
