The Ultimate Guide to Application Security
A curated Indian edition of TechDay news, analysis, interviews, reviews, job moves, and related resources for Application Security.
What to know about Application Security
Application Security focuses on protecting software applications from vulnerabilities and cyber threats throughout their development and operational life cycles. This critical field addresses challenges such as runtime protection, secure coding practices, DevSecOps integration, API security, cloud-native environments, and mitigating attacks like DDoS, supply chain risks, and malicious bot traffic.
Exploring the latest stories in Application Security reveals how advancements like AI and automation are enhancing threat detection, vulnerability management, and developer workflows, while highlighting ongoing risks found in mobile apps, open source components, and cloud deployments. Readers can gain insights into best practices, emerging technologies, and strategies to safeguard applications against evolving cyber threats.
Whether you’re a developer, security professional, or business leader, staying informed about Application Security developments helps in building resilient software, maintaining compliance, and protecting user data in an increasingly complex digital landscape.
Indian Application Security News
Regional stories with direct local relevance
JFrog unveils Mumbai speaker line-up on AI software risks
Indian firms are moving to tighten software controls as AI agents and code generation raise new security and auditability risks.
Why DevOps transparency matters more than speed in cloud-native scale
In cloud‑native DevOps, transparency-not raw speed-now determines how safely, cheaply and reliably teams can scale complex systems.
From participation to influence: redefining women's leadership in india's technology transformation era
As India's tech economy surges, women's leadership must shift from presence in teams to real influence over high‑stakes digital decisions.
Azul enhances Java security detection, cutting false positives by 99%
Azul's new Java security tool cuts false positives by 99%, boosting detection accuracy and helping DevOps teams focus on real risks in production code.
Radware enhances security for major Indian airport
Radware has secured a contract to enhance cybersecurity for a major Indian airport to combat a 265% rise in cyber threats, delivering vital protection.
F5 announces advancements in multi-cloud networking partnerships
F5 reinforces its multi-cloud leadership, unveiling partnerships with NetApp, Red Hat, and Console Connect amid market growth projections.
Analyst Insights
Research and market analysis connected to Application Security
Cognizant launches Secure AI Services for enterprises
JFrog unveils Mumbai speaker line-up on AI software risks
Check Point wins Frost & Sullivan recognition for WAF
Capsule Security raises $7 million to guard AI agents
Gigamon eyes AI-led surge in network observability
Featured News
Google Cloud CEO sets out enterprise AI agent plan
Enterprises will get one place to build, govern and run AI agents, as Google Cloud expands Gemini Enterprise across models, data and security.
'Human Risk' takes centre stage - Mimecast CEO
Mimecast chief warns human risk is now cybersecurity's 'eighth layer' as malicious insiders overtake negligence in Australian attacks.
UiPath Accelerates AI in Software Development and Testing
UiPath is pushing AI deeper into software testing, promising autonomous agents that transform quality assurance and developers' roles.
Grafana: Turning data chaos into developer efficiency and CFO savings
Grafana leans on AI-powered observability and Adaptive Telemetry to sharpen developer insight while slashing cloud bills by up to 50%.
Expert Columns
The evolving role of the CSO: From technical guardian to business strategist
Why DevOps transparency matters more than speed in cloud-native scale
Leading security in the AI era: Why CISOs must secure AI while using AI to secure the enterprise
Secure by default: Moving beyond secure by design
Why the next endpoint and SASE disruption will not come from a security vendor
From participation to influence: redefining women's leadership in india's technology transformation era
The security challenges in AI-assisted software development
Hybrid mesh security emerges to counter AI cyber risks
How AI-powered log management unlocks observability
AI surge exposes cloud security gaps, report warns
Interviews
Interviews and video coverage from the networkRecent Application Security News
Sysdig expands cloud security with new SaaS region in India
Sysdig expands its cloud-native security platform into India with a new SaaS region, addressing the growing cloud economy and increasing demand for local data sovereignty.
Supply chain software security: Remediating the Curl effect
These statistics provide a convincing perspective on how this vulnerability in Curl makes security across the software supply chain sort of defenseless.
WatchGuard buys Perimeters.io in cloud security push
MSPs will gain a single platform for cloud threat detection as the deal widens WatchGuard's reach into identity and SaaS security.
KnowBe4 partners Secure Code Warrior on AI training
Organisations using AI in software development will get training on secure coding and governance as vulnerabilities and data risks mount.
OpenAI launches GPT-5.5-Cyber for vetted defenders
Vetted security teams will get fewer refusals on authorised tasks as OpenAI tightens access around its most permissive cyber model.
Rapid7 joins OpenAI cyber programme to speed defence
The tie-up could help security teams cut false alarms and patch faster as automated attacks shrink defenders’ reaction time.
Synack launches Sara AI Pentesting for wider coverage
The move aims to widen security coverage as firms struggle to test expanding attack surfaces quickly enough.
Malicious OpenClaw skill spreads Remcos RAT & GhostLoader
AI agent workflows are being targeted by a fake OpenClaw skill that installs Remcos RAT and GhostLoader on Windows, macOS and Linux.
AI inference becomes core operational workload in firms
Most firms are now running AI in production, with hybrid clouds and security controls becoming crucial as inference overtakes training.
Vega spots Weaver E-cology attacks within days of patch
Attackers were exploiting a critical Weaver E-cology flaw within five days of the vendor patch, Vega said, with repeated attempts blocked.
Saiga phishing kit returns to bypass multifactor auth
Session cookie theft lets attackers slip past multifactor checks, putting enterprise email accounts at risk even after login.
Kamiwaza launches AI platform for regulated sectors
Regulated organisations can now run AI across distributed data while preserving access controls, audit trails and compliance boundaries.
Chainguard launches compliant EKS add-ons in AWS Marketplace
The listing gives regulated AWS customers a faster route to compliant Kubernetes components, avoiding custom hardening and patching work.
Tenable finds GitHub workflow flaw in Microsoft repo
A flaw in a widely watched Microsoft repository could have let attackers run code and steal secrets through GitHub Actions, Tenable said.
Cloudflare warns of AI code review prompt injection
Detection of malicious code can collapse when AI reviewers are fed large files packed with harmless text, Cloudflare's research shows.
Qilin drives 43% rise in ransomware attacks
Ransomware activity stayed elevated in March, with NCC Group saying Qilin alone was linked to 136 attacks and drove a 43% monthly rise.
OpenObserve raises USD $10 million for Observability 3.0
The funding will help OpenObserve expand as more firms seek unified monitoring for AI-heavy systems and growing telemetry volumes.
Intruder launches AI pentesting for faster validation
Security teams can now validate scanner findings in minutes as Intruder rolls out AI agents to cut false positives and speed remediation.
Keeper Security launches Agent Kit for AI coding agents
It lets developers use AI coding tools without pasting sensitive credentials into prompts, reducing the risk of secrets leaking into logs or source control.
Intruder launches AI pentesting to cut vulnerability triage
Security teams can now validate scanner alerts in minutes as Intruder’s new AI agents cut false positives and speed up triage.