Taylor Armerding – Medium

Taylor Armerding

Report: Building trust into software takes a team of tests

A new report documents the benefits of multiple software security testing tools

Nov 12

Report: Building trust into software takes a team of tests

Nov 12

Will AI be good for democracy? That depends on the humans in charge

Artificial intelligence is invading every element of our lives, including our system of government. That will likely be both good and bad.

Nov 4

Will AI be good for democracy? That depends on the humans in charge

Nov 4

Published in
Nerd For Tech

Zero-day software defects are leading to many very bad days

Zero-day software vulnerabilities are among the most dangerous, because there is no patch for them. And they are increasing.

Oct 28

Zero-day software defects are leading to many very bad days

Oct 28

Published in
Nerd For Tech

Researcher finds government cybersecurity is still porous

Despite catastrophic breaches of government, cybersecurity hasn’t improved as much as it could, or should

Oct 21

Researcher finds government cybersecurity is still porous

Oct 21

Published in
Nerd For Tech

Cybersecurity awareness should be aimed at software creators as well as users

The need for better cybersecurity is universal. So an awareness month should apply to those who make software, as well as use it.

Oct 15

Cybersecurity awareness should be aimed at software creators as well as users

Oct 15

Published in
Nerd For Tech

Report: Build trust (and speed) in your software with DevSecOps

A new report by Black Duck documents the need for improvement in DevSecOps, along with recommendations on how to improve.

Oct 8

Report: Build trust (and speed) in your software with DevSecOps

Oct 8

Published in
Nerd For Tech

One of software’s oldest vulnerabilities persists, even when fixes are available

There are fixes available for cross-site scripting software vulnerabilities. Why aren’t they being used more often?

Oct 1

One of software’s oldest vulnerabilities persists, even when fixes are available

Oct 1

Published in
Nerd For Tech

Are you plagued by software testing tool sprawl? Get to know ASPM

Software security testing tool sprawl remains a problem. But ASPM can help to mitigate it.

Sep 23

Are you plagued by software testing tool sprawl? Get to know ASPM

Sep 23

Published in
Nerd For Tech

SEC cyber incident disclosure rule is a “material” thing

The SEC’s new rule requiring public companies to disclose “material” cyber incidents is well-intended but still untested.

Sep 16

SEC cyber incident disclosure rule is a “material” thing

Sep 16

Published in
Nerd For Tech

Slack issues a patch. Be sure you apply it

A prompt injection flaw in Slack AI has been patched. But obviously it’s worthless if users don’t apply it.

Sep 9

Slack issues a patch. Be sure you apply it

Sep 9

Taylor Armerding

Taylor Armerding

I’m a security advocate at the Synopsys Software Integrity Group. I write mainly about software security, data security and privacy.

Following

Help
Status
About
Careers
Press
Blog
Privacy
Terms
Text to speech
Teams