Assess and improve your software security maturity with SAMMY. Free OWASP SAMM implementation tool for DevSecOps teams. Start your assessment now.
SAMMY: Free Tool to Implement OWASP SAMM Security Read More »
Demonstrating the return on cyber security investment is a task every CISO must handle. Let us share how to show the return on security investment in real life.
BSG discovered CVE-2022-0271, a critical SQL injection in Leaflet Maps Marker WordPress plugin. Full vulnerability disclosure, PoC, and remediation steps.
CVE-2022-0271: Leaflet Maps Marker SQL Injection Exploit Read More »
BSG researchers discovered a stored XSS vulnerability in @yaireo/tagify npm package. Full disclosure, PoC, and patch details inside.
CVE-2022-25854: Tagify npm Stored XSS Vulnerability Read More »
BSG team won Ukraine’s first SANS Grid NetWars cybersecurity tournament. See how our pentesters competed and claimed victory in this elite CTF challenge.
BSG Wins SANS NetWars: Ukraine’s First CTF Champions Read More »
Software supply chain security is in the news again, along with the Trojan Source attack on modern software compilers. Why is it so important?
Why Is Software Supply Chain Security Important? Read More »
BSG has conducted an application pentest for the Ukrainian Bone Marrow Donors Registry. Why it matters and how it relates to you?
BSG provides UMBDR a Pro Bono Application Pentest Read More »
Where in the software product lifecycle does security come into play? What are best practices and common pitfalls? In this post, read about that and more.
Do you know how to choose the right penetration testing company? In this article, we talk about the factors to look out for.
What is social engineering, and why does it occur? Types and examples of attacks and what steps should be taken to prevent them? Read more in our blog post.
Social Engineering: What It Is and How to Prevent It? Read More »