Ounce Labs - Recent Updates

ON-DEMAND WEBCAST: Is Your Security Effective?

Wed, 21 Oct 2009 09:00:00 EDT

More and more organizations are implementing security at the application level but, it’s one thing to build in security; it’s another to make sure it’s effective.

Titanium Holdings Selects Ounce Labs for Application Security

Tue, 4 Aug 2009 09:00:00 EDT

Ease of Use, Accuracy of Findings and Ounce Pricing Model – All Decision Factors

IBM Acquires Ounce Labs, Inc.

Tue, 28 Jul 2009 09:00:00 EDT

New Capabilities Extend IBM's Application Security and Compliance Offerings; Help Lower Risk and Cost of Software Delivery

What CEOs Don't Know About Cybersecurity

Tue, 14 Jul 2009 09:00:00 EDT

Forbes: A new study hints at how often cyberthreats aren't communicated to the boss.

CIP standards may not be enough to secure electric grid

Thu, 9 Jul 2009 09:00:00 EDT

Government Computer News: Compliance audits that focus on reliability of electric system begin this month

Ounce Labs Offers Free Application Security Vulnerability Assessment at IT Security Summit

Fri, 26 Jun 2009 09:00:00 EDT

Learn how to enter the drawing for a free security assessment valued at $5,000.

Developing Secure Applications

Fri, 19 Jun 2009 09:00:00 EDT

Data Manager Online: A How-To article on application security.

Feds must get serious about checking commercial software for threats

Thu, 18 Jun 2009 09:00:00 EDT

Nextgov: Agencies must develop methods to make sure the commercial software they purchase isn't secretly loaded with viruses that could expose sensitive information stored on government networks, federal and industry technologists said on Tuesday.

Avoid Security Suffering With These 3 Questions

Tue, 16 Jun 2009 09:00:00 EDT

By: Jack Danahy, Founder and CTO, Ounce Labs

eBizQ: As an active speaker at industry conferences and events, participants often come up to me and ask where is the right place to start implementing security.

Ounce Labs Co-Founder and CTO to Speak at Symantec Government Symposium

Fri, 12 Jun 2009 09:00:00 EDT

Jack Danahy will sit on a panel to discuss "The Weakest Link: Security Software Supply Chain Vulnerabilities"

Your applications are trying to tell you something - are you listening?

Mon, 1 Jun 2009 09:00:00 EDT

(IN)Secure Magazine: Your applications are trying to tell you something. They are saying, "I can help you find potential risks to your business, please just ask me!" Applications are the gatekeepers for all of your data – where it gets processed, transformed, and transmitted – and by their very nature, applications are best positioned to help you ensure data privacy for your customers. By listening to your applications, it is possible to know – not guess or hope – that your information is secure enough.

Defending Sensitive Information from Evolving Threats of Cyber-Espionage

Thu, 21 May 2009 09:00:00 EDT

By: Jack Danahy, Co-Founder and CTO, Ounce Labs.

Computer Technology Review: As the number and sophistication of today's hackers continues to mature, the increasing quantity and complexity of exploits is raising concerns about the safety of some of our nation's most sensitive data. Attackers are no longer just amateurs defacing Web sites, as cyber-spies have emerged as a serious threat to sensitive military, government and business information.

Ounce Labs Announces Software Security Assessment-as-a-Service

Tue, 12 May 2009 09:00:00 EDT

Offering Makes Application Security Risk Assessment Affordable and Accessible for All Organizations

The Cost Of Fixing An Application Vulnerability

Tue, 12 May 2009 09:00:00 EDT

Dark Reading: Security experts say enterprises spend anywhere from $400 to several thousand dollars to fix a single vulnerability in their internally Web developed applications

PODCAST: Defining "Security" for Financial Services and Federal Organizations

Tue, 28 Apr 2009 09:00:00 EDT

Jack Danahy, co-founder and CTO of Ounce Labs, talks to BankInfoSecurity from the RSA show floor, discussing industry trends, the role of compliance in security spending, and specifically the role that source code analysis can take with an organization seeking to solve their application security problems.

WEBCAST: The Role of PCI in a Security Strategy

Thu, 16 Apr 2009 09:00:00 EDT

Jack Danahy, co-founder and CTO of Ounce Labs, presents the keynote presentation for BrightTalk's Application Security Summit, focusing on the broader applicability of PCI when designing an organizational security standard.

SQL Injection Invasion: Weak Web Applications Increasingly Fall Prey To This Potentially Devastating Attack

Fri, 10 Apr 2009 08:00:00 EDT

Processor.com: As security measures in data centers become progressively more stringent, hackers are turning to more unique methods to access sensitive data. One of these is SQL injection, which replaced cross-site scripting as the predominant Web application vulnerability in 2008, according to an IBM study.

Your company's reputation: Critical, but fragile

Wed, 8 Apr 2009 09:00:00 EDT

SearchSoftwareQuality: Jack Danahy, co-founder and CTO of Ounce Labs, blogs about the impact to reputation in the wake of a critical data breach, such as the breach suffered by Heartland Data Systems.

New Bill Would Give Feds Sweeping Cybersecurity Enforcement Powers

Thu, 2 Apr 2009 09:00:00 EDT

E-Commerce Times: If passed by Congress and signed into law by the president, the Cybersecurity Act of 2009 would mark a new dawn in securing the computer networks of utilities, banks, traffic control operations, telecoms and other entities critical to homeland security. Both government and private industry cybersecurity efforts have been ineffective up to now, proponents maintain.

PODCAST: Software Security: Removing insecurity from outsourced development

Thu, 2 Apr 2009 09:00:00 EDT

Jack Danahy, founder and CTO of Ounce Labs, speaks with Jan Stafford, Executive Editor of SearchSoftwareQuality.com, about practical ways to avoid risks in outsourced development projects.

IN THE NEWS: Diary of a Data Breach Investigation

Wed, 1 Apr 2009 09:00:00 EDT

CSO Online: An information security manager shares the diary he kept while investigating a possible data breach.

PODCAST: What, Why and How of Application Security: Keeping up with Evolving Compliance Guidelines

Wed, 25 Mar 2009 09:00:00 EDT

Jack Danahy, founder of Ounce Labs and Bob Bragdon, publisher of CSO, discuss the disconnect between compliance and security, and what you can do to keep ahead of the curve.

BLOG: Suitable Security

Mon, 23 Mar 2009 09:00:00 EDT

Jack Danahy's blog, discussing the need for a "balanced middle road" approach to security.

Ounce 6 Product Infosheet

Mon, 23 Mar 2009 09:00:00 EDT

Read more about the Ounce Application Security Product

The Path to a Secure Application

Mon, 23 Mar 2009 09:00:00 EDT

A Source Code Security Review Checklist