Articles

Software Supply Chain Attacks

Attackers leverage third-party resources to perform software supply chain attacks. Learn how what these attacks look like and how to prevent them.

The Importance of Deputy CISO's in Security Teams

Having a backup to the CISO is an important part of a cybersecurity program. It ensures that critical functions are still being performed if the CISO is unavailable.

What is Ethical Hacking?

As technology continues to play an increasingly important role in our lives, ethical hacking is becoming an essential part of any organization's cybersecurity strategy, learn what it is and how to use it to your advantage.

Ethical Hacking: Reporting Your Findings

Ethical hackers need to share the information they discover through detailed reports. Learn about the different report types, and how to construct them.

Ethical Hacking: Vulnerability Disclosure Program (VDP) Vs Bug Bounty (BB)

How does a bug bounty (BB) program compare to other vulnerability disclosure programs (VDP)? Learn how enterprises are using VDPs to help secure their applications.

Enterprise security: How to stay secure at enterprise scale

Enterprise security is the use of technologies, practices, and processes to protect digital assets, systems, and data from threats and vulnerabilities.

Enterprise vulnerability management: Processes & tools

Enterprise vulnerability management is the systematic process of identifying, assessing, prioritizing, and mitigating vulnerabilities in an organization's digital infrastructure, applications, and systems.

Enterprise Application Security

Learn how to protect complex applications from common threats with our guide to enterprise application security. Discover best practices, tools, and successful examples.

What is enterprise-grade security?

By embracing an enterprise-grade approach, businesses can ensure end-to-end security throughout their software development journey

Enterprise security tools: types and key considerations

Security tooling is a financial investment and an investment of time and resources to deploy, maintain, and manage. Therefore, organizations must carefully evaluate and prioritize their security needs to choose the best tools for their unique needs.

Enterprise Cloud Security: Secure cloud deployments at scale

In the face of many threats, enterprises must take a comprehensive approach to cyber security to protect sensitive data and infrastructure in the cloud.

How to Prepare for Tomorrow’s Zero-Day Vulnerabilities Today

Zero-day vulnerabilities are all too common in today’s applications. Learn how to identify and fix zero-day vulnerabilities proactively with a developer-first approach to security.

AI Glossary

Snyk’s glossary for learning about AI, including its science, common AI use cases, and how it relates to cybersecurity.

Golang SQL Injection By Example

Learn how to prevent SQL injection in Golang applications by using prepared statements and parameterized queries and leveraging tools like Snyk for vulnerability detection.

How to Write Secure Go Code

Learn how to write secure code in Go and protect your applications from vulnerabilities like SQL injection and SSRF. Discover best practices for Go development and how Snyk Code can help you identify and fix security issues effortlessly.

Understanding Server-Side Template Injection in Golang

SSTI can open the door to escalating security risks such as file inclusion, Cross-Site Scripting (XSS), or even Code Injection Attacks.

Is TypeScript All We Need for Application Security?

What are the security controls and fallacies in TypeScript security? Securing TypeScript applications involves a multi-layered approach.

How to Secure Your GitHub Actions Workflows with Snyk to Enhance JavaScript Security

Snyk provides a pre-built custom Snyk GitHub Actions workflow that you can add to your CI and saves you the trouble of managing the vulnerability scans using the Snyk CLI directly.

Security Risks with Python Package Naming Convention: Typosquatting and Beyond

Beware of typosquatting and misleading Python package names—one small mistake in pip install can expose your system to backdoors, trojans, and malicious code. Learn how attackers exploit package naming conventions and discover best practices to secure your open-source supply chain.

How to Install Python on macOS

Learn how to install Python on macOS step by step. This easy guide covers downloading, installing, and setting up Python on your Mac for beginners and developers.