Ounce Labs - Recent News

IBM Acquires Ounce Labs, Inc.

Tue, 28 Jul 2009 09:00:00 EDT

New Capabilities Extend IBM's Application Security and Compliance Offerings; Help Lower Risk and Cost of Software Delivery

Titanium Holdings Selects Ounce Labs for Application Security

Tue, 4 Aug 2009 09:00:00 EDT

Ease of Use, Accuracy of Findings and Ounce Pricing Model – All Decision Factors

What CEOs Don't Know About Cybersecurity

Tue, 14 Jul 2009 09:00:00 EDT

Forbes: A new study hints at how often cyberthreats aren't communicated to the boss.

CIP standards may not be enough to secure electric grid

Thu, 9 Jul 2009 09:00:00 EDT

Government Computer News: Compliance audits that focus on reliability of electric system begin this month

Ounce Labs Offers Free Application Security Vulnerability Assessment at IT Security Summit

Fri, 26 Jun 2009 09:00:00 EDT

Learn how to enter the drawing for a free security assessment valued at $5,000.

Developing Secure Applications

Fri, 19 Jun 2009 09:00:00 EDT

Data Manager Online: A How-To article on application security.

Feds must get serious about checking commercial software for threats

Thu, 18 Jun 2009 09:00:00 EDT

Nextgov: Agencies must develop methods to make sure the commercial software they purchase isn't secretly loaded with viruses that could expose sensitive information stored on government networks, federal and industry technologists said on Tuesday.

Avoid Security Suffering With These 3 Questions

Tue, 16 Jun 2009 09:00:00 EDT

By: Jack Danahy, Founder and CTO, Ounce Labs

eBizQ: As an active speaker at industry conferences and events, participants often come up to me and ask where is the right place to start implementing security.

Ounce Labs Co-Founder and CTO to Speak at Symantec Government Symposium

Fri, 12 Jun 2009 09:00:00 EDT

Jack Danahy will sit on a panel to discuss "The Weakest Link: Security Software Supply Chain Vulnerabilities"

Your applications are trying to tell you something - are you listening?

Mon, 1 Jun 2009 09:00:00 EDT

(IN)Secure Magazine: Your applications are trying to tell you something. They are saying, "I can help you find potential risks to your business, please just ask me!" Applications are the gatekeepers for all of your data – where it gets processed, transformed, and transmitted – and by their very nature, applications are best positioned to help you ensure data privacy for your customers. By listening to your applications, it is possible to know – not guess or hope – that your information is secure enough.

Defending Sensitive Information from Evolving Threats of Cyber-Espionage

Thu, 21 May 2009 09:00:00 EDT

By: Jack Danahy, Co-Founder and CTO, Ounce Labs.

Computer Technology Review: As the number and sophistication of today's hackers continues to mature, the increasing quantity and complexity of exploits is raising concerns about the safety of some of our nation's most sensitive data. Attackers are no longer just amateurs defacing Web sites, as cyber-spies have emerged as a serious threat to sensitive military, government and business information.

Ounce Labs Announces Software Security Assessment-as-a-Service

Tue, 12 May 2009 09:00:00 EDT

Offering Makes Application Security Risk Assessment Affordable and Accessible for All Organizations

The Cost Of Fixing An Application Vulnerability

Tue, 12 May 2009 09:00:00 EDT

Dark Reading: Security experts say enterprises spend anywhere from $400 to several thousand dollars to fix a single vulnerability in their internally Web developed applications

SQL Injection Invasion: Weak Web Applications Increasingly Fall Prey To This Potentially Devastating Attack

Fri, 10 Apr 2009 08:00:00 EDT

Processor.com: As security measures in data centers become progressively more stringent, hackers are turning to more unique methods to access sensitive data. One of these is SQL injection, which replaced cross-site scripting as the predominant Web application vulnerability in 2008, according to an IBM study.

Your company's reputation: Critical, but fragile

Wed, 8 Apr 2009 09:00:00 EDT

SearchSoftwareQuality: Jack Danahy, co-founder and CTO of Ounce Labs, blogs about the impact to reputation in the wake of a critical data breach, such as the breach suffered by Heartland Data Systems.

New Bill Would Give Feds Sweeping Cybersecurity Enforcement Powers

Thu, 2 Apr 2009 09:00:00 EDT

E-Commerce Times: If passed by Congress and signed into law by the president, the Cybersecurity Act of 2009 would mark a new dawn in securing the computer networks of utilities, banks, traffic control operations, telecoms and other entities critical to homeland security. Both government and private industry cybersecurity efforts have been ineffective up to now, proponents maintain.

IN THE NEWS: Diary of a Data Breach Investigation

Wed, 1 Apr 2009 09:00:00 EDT

CSO Online: An information security manager shares the diary he kept while investigating a possible data breach.

Web Site Hacks - and Identity Theft - On the Rise

Tue, 17 Mar 2009 09:00:00 EDT

USA Today: Blog perspective

Website-infecting SQL Injection Attacks Hit 450,000 a Day

Mon, 16 Mar 2009 09:00:00 EDT

USA Today: Cybercriminals are spreading invisible infections far and wide across the Internet by hammering hundreds of thousands of websites each day with so-called SQL injection attacks.

Open Source Getting Bad Reputation on Security Says Vendor

Fri, 13 Mar 2009 09:00:00 EDT

The Tech Herald: Ounce Labs, makers of Ounce 6 code analyzer for vulnerability scanning, say that recent criticisms surrounding the security of Open Source Software are off-base and, in some cases, counterproductive to security itself.

Open Source is Getting a Bad Rap on Security

Tue, 10 Mar 2009 09:00:00 EDT

Help Net Security: Criticism against open source code is off-base

Ounce Labs: Open Source Software is Getting a Bad Rap on Security

Mon, 9 Mar 2009 09:00:00 EDT

Application Security Leader Refutes Misleading Vendor Statements about Open Source Security Risks

Ounce Labs Co-Founder and CTO Pens Feature Chapter in New Business Book

Wed, 4 Mar 2009 09:00:00 EST

Jack Danahy Shares His Experience as Founder of Two Successful Technology Companies in Recently Published Book

Ounce Labs Announces Lauch of "Suitable Security" Blog

Mon, 2 Mar 2009 09:00:00 EST

Renowned Security Expert Jack Danahy Comments on Security and Industry Trends

PCI Compliance and how PCI Affects your Testing

Fri, 20 Feb 2009 09:00:00 EST

SearchSoftwareQuality: Learn how or why being compliant does not equal being secure.