The Ultimate Guide to Application Security
A curated Indian edition of TechDay news, analysis, interviews, reviews, job moves, and related resources for Application Security.
What to know about Application Security
Application Security focuses on protecting software applications from vulnerabilities and cyber threats throughout their development and operational life cycles. This critical field addresses challenges such as runtime protection, secure coding practices, DevSecOps integration, API security, cloud-native environments, and mitigating attacks like DDoS, supply chain risks, and malicious bot traffic.
Exploring the latest stories in Application Security reveals how advancements like AI and automation are enhancing threat detection, vulnerability management, and developer workflows, while highlighting ongoing risks found in mobile apps, open source components, and cloud deployments. Readers can gain insights into best practices, emerging technologies, and strategies to safeguard applications against evolving cyber threats.
Whether you’re a developer, security professional, or business leader, staying informed about Application Security developments helps in building resilient software, maintaining compliance, and protecting user data in an increasingly complex digital landscape.
Indian Application Security News
Regional stories with direct local relevance
Indian firms lag on software supply chain security
A JFrog study says weak package and container defences are leaving Indian organisations exposed as AI use adds new checks for developers.
JFrog unveils Mumbai speaker line-up on AI software risks
Indian firms are moving to tighten software controls as AI agents and code generation raise new security and auditability risks.
Why DevOps transparency matters more than speed in cloud-native scale
In cloud‑native DevOps, transparency-not raw speed-now determines how safely, cheaply and reliably teams can scale complex systems.
From participation to influence: redefining women's leadership in india's technology transformation era
As India's tech economy surges, women's leadership must shift from presence in teams to real influence over high‑stakes digital decisions.
Azul enhances Java security detection, cutting false positives by 99%
Azul's new Java security tool cuts false positives by 99%, boosting detection accuracy and helping DevOps teams focus on real risks in production code.
Radware enhances security for major Indian airport
Radware has secured a contract to enhance cybersecurity for a major Indian airport to combat a 265% rise in cyber threats, delivering vital protection.
Analyst Insights
Research and market analysis connected to Application Security
Secure Code Warrior launches AI adoption model for CISOs
JFrog named leader in Gartner's software security quadrant
Cequence posts record quarter on agentic AI security
Averlon launches Precog to block exploitable risks
Salt Code enforces security policies in AI coding tools
Featured News
Exabeam: Ruthless efficiency can make agentic AI malicious
Behavioural analytics is becoming essential as AI agents can pursue tasks so efficiently that they may cause damage without any malicious intent.
Check Point Technologies: On vigilance, Mythos and beyond
AI-driven vulnerability scanning is forcing firms to rethink complacency as Check Point says existing defences still help against Mythos.
Exclusive: Reco COO on securing the AI inside your SaaS stack
Reco COO Zoe Hillenmeyer says enterprises typically underestimate their AI agent exposure by a factor of ten and that gap is widening.
Google Cloud CEO sets out enterprise AI agent plan
Enterprises will get one place to build, govern and run AI agents, as Google Cloud expands Gemini Enterprise across models, data and security.
'Human Risk' takes centre stage - Mimecast CEO
Mimecast chief warns human risk is now cybersecurity's 'eighth layer' as malicious insiders overtake negligence in Australian attacks.
Expert Columns
Why ERP is not just another platform you can rebuild with AI code
As agentic development accelerates, workflow auditability becomes a bottleneck
Why organisations in Asia Pacific are rethinking their AI deployment strategies
The evolving role of the CSO: From technical guardian to business strategist
Why DevOps transparency matters more than speed in cloud-native scale
Leading security in the AI era: Why CISOs must secure AI while using AI to secure the enterprise
Secure by default: Moving beyond secure by design
Why the next endpoint and SASE disruption will not come from a security vendor
From participation to influence: redefining women's leadership in india's technology transformation era
The security challenges in AI-assisted software development
Interviews
Interviews and video coverage from the networkRecent Application Security News
F5 announces advancements in multi-cloud networking partnerships
F5 reinforces its multi-cloud leadership, unveiling partnerships with NetApp, Red Hat, and Console Connect amid market growth projections.
Sysdig expands cloud security with new SaaS region in India
Sysdig expands its cloud-native security platform into India with a new SaaS region, addressing the growing cloud economy and increasing demand for local data sovereignty.
Supply chain software security: Remediating the Curl effect
These statistics provide a convincing perspective on how this vulnerability in Curl makes security across the software supply chain sort of defenseless.
Dify flaws expose cross-tenant AI data, Zafran says
Users of Dify's cloud service could have had private chats and files exposed after Zafran Security disclosed four flaws in the AI platform.
F5 launches AI security platform, buys SurePath AI
Security teams are being offered new tools to track shadow AI and block prompt injection as enterprises rush to deploy agents and models.
Explainer: How loop engineering is changing coding
By focusing on evidence and small reversible changes, loop engineering could curb costly AI coding mistakes before they reach production.
Exabeam launches open-source Praxen to verify AI agents
Businesses adopting autonomous AI agents face a new pre-deployment security check as Exabeam's Praxen tests whether permissions match duties.
IBM joins OpenAI cyber programme with app security tool
Enterprise security teams gain a new AI-assisted way to spot exploitable code flaws, as IBM widens its cyber work with OpenAI.
OpenAI expands Daybreak with patching tools & partners
The move aims to help defenders turn faster vulnerability discovery into working fixes, as OpenAI broadens access to its cyber tools and partners.
Spur adds no-code Cloudflare integration for Monocle
Security teams can now block or review suspicious anonymised traffic in minutes, with no engineering work, through Spur's new Cloudflare link.
Pathlock & NTT DATA launch global SAP cyber service
Enterprises running SAP may gain around-the-clock protection as the partners target ransomware, fraud and staffing gaps in ERP security.
GitGuardian launches endpoint protection for laptops
A single compromised laptop can expose thousands of live keys, according to GitGuardian's early field tests, as attacks shift to developer machines.
Checkmarx launches hybrid AI engine for code scanning
False alerts and missed flaws are the target as the new engine aims to help security teams scan AI-written code more reliably.
Vercel unveils agent tools as deployments turn AI-led
More than half of Vercel deployments are now triggered by coding agents, as monthly AI token traffic has jumped tenfold.
Mini Shai-Hulud worm turns public, NCC Group warns
Public release of the Mini Shai-Hulud code means copycat attacks can now hit developers, CI/CD systems and open-source supply chains.
Arkose Labs launches agent trust manager for Titan
The new system aims to curb fraud as AI-driven traffic surges and online security teams struggle to tell legitimate agents from attackers.
Reco launches Claude security integration for enterprises
Security teams can now trace AI activity across employee and developer environments as Reco links Claude usage to permissions, keys and data paths.
CrowdStrike expands QuiltWorks with AWS on AI security
AWS customers will gain broader visibility into AI and cloud risks as CrowdStrike adds new monitoring, trials and private connectivity.
Gigamon & Zscaler unveil Zero Trust access integration
The move gives joint customers more post-access visibility into encrypted traffic as firms phase out legacy VPNs and hunt lateral movement risks.
Azul launches free JVM risk assessment amid AI threat
The free check could help security teams uncover overlooked Java runtimes before AI-driven attackers exploit known flaws and outdated versions.