On August 22, 2018, Apache Struts announced a security vulnerability and patch which remediates a critical remote code execution vulnerability. Apache Struts is a Java-based web application platform used by an estimated 65 percent of Fortune 100 companies. With this latest vulnerability, attackers can exploit a web application...

Angular Frameworks on a TypeScript back end: Security improvements for API calls with a warning

While it’s difficult to get permission from one’s corporate communications team or legal department on chatting with vendors, I was able to secure an interview with one of our financial services customers who use both Dynamic and Source code scanning.

As the news unfolds on Equifax and the latest and greatest of the Apache Struts hacks, a co-worker and I were talking about it amongst ourselves. “Why would someone leave a critical vulnerability unpatched for months?”, my co-worker asked in puzzled tones.

We’re pleased to announce a refresh of our Vulnerability Management overview tab.

WhiteHat Sentinel Source, which provides requisite plug-ins and integrations to these developer tools, including the Jenkins CI build tool for support of automated project builds as well as Sentinel scans of source code.