The Ultimate Guide to Application Security
A curated Asian edition of TechDay news, analysis, interviews, reviews, job moves, and related resources for Application Security.
What to know about Application Security
Application Security focuses on protecting software applications from vulnerabilities and cyber threats throughout their development and operational life cycles. This critical field addresses challenges such as runtime protection, secure coding practices, DevSecOps integration, API security, cloud-native environments, and mitigating attacks like DDoS, supply chain risks, and malicious bot traffic.
Exploring the latest stories in Application Security reveals how advancements like AI and automation are enhancing threat detection, vulnerability management, and developer workflows, while highlighting ongoing risks found in mobile apps, open source components, and cloud deployments. Readers can gain insights into best practices, emerging technologies, and strategies to safeguard applications against evolving cyber threats.
Whether you’re a developer, security professional, or business leader, staying informed about Application Security developments helps in building resilient software, maintaining compliance, and protecting user data in an increasingly complex digital landscape.
Asian Application Security News
Regional stories with direct local relevance
Singapore software security gap exposed in JFrog study
Despite strong governance on paper, Singapore firms are struggling to enforce software security controls as AI and open-source use accelerates.
Lalamove beats NEV target three years early in China
In China, the delivery platform has lifted new energy vehicle fulfilment above 60%, three years ahead of its 2028 target, cutting emissions.
Modulus Labs cuts incident response time by 40% with Datadog
Payment failures now surface in seconds for Modulus Labs after it unified monitoring and security, cutting resolution time by more than 40 per cent.
Leading Agentic AI teams in Singapore: What technology leaders should know
With 93% of Singapore executives now treating AI software innovation as strategic, leaders face a tougher test: keeping experts aligned and shipping fast.
AI-first firms in Southeast Asia face rising cyber risk
AI-first firms in Southeast Asia suffer longer, costlier cyber incidents as rising AI use widens attack surfaces and fuels scraping costs.
AI uncovers 'SvelteSpill' flaw in Vercel SvelteKit apps
AI pentesting tool uncovers 'SvelteSpill' bug in default SvelteKit apps on Vercel, exposing cached private data before a platform fix.
Analyst Insights
Research and market analysis connected to Application Security
Salt Code enforces security policies in AI coding tools
Software Improvement Group named Gartner leader on debt
Cycode launches agentic development lifecycle security
Cognizant launches Secure AI Services for enterprises
Check Point wins Frost & Sullivan recognition for WAF
Featured News
Exabeam: Ruthless efficiency can make agentic AI malicious
Behavioural analytics is becoming essential as AI agents can pursue tasks so efficiently that they may cause damage without any malicious intent.
Check Point Technologies: On vigilance, Mythos and beyond
AI-driven vulnerability scanning is forcing firms to rethink complacency as Check Point says existing defences still help against Mythos.
Exclusive: Reco COO on securing the AI inside your SaaS stack
Reco COO Zoe Hillenmeyer says enterprises typically underestimate their AI agent exposure by a factor of ten and that gap is widening.
Google Cloud CEO sets out enterprise AI agent plan
Enterprises will get one place to build, govern and run AI agents, as Google Cloud expands Gemini Enterprise across models, data and security.
'Human Risk' takes centre stage - Mimecast CEO
Mimecast chief warns human risk is now cybersecurity's 'eighth layer' as malicious insiders overtake negligence in Australian attacks.
UiPath Accelerates AI in Software Development and Testing
UiPath is pushing AI deeper into software testing, promising autonomous agents that transform quality assurance and developers' roles.
Expert Columns
Why organisations in Asia Pacific are rethinking their AI deployment strategies
Leading Agentic AI teams in Singapore: What technology leaders should know
The evolving role of the CSO: From technical guardian to business strategist
Secure by default: Moving beyond secure by design
Why the next endpoint and SASE disruption will not come from a security vendor
The security challenges in AI-assisted software development
Hybrid mesh security emerges to counter AI cyber risks
How AI-powered log management unlocks observability
AI surge exposes cloud security gaps, report warns
Agentic AI double agents expose dangerous security gaps
Interviews
Interviews and video coverage from the networkRecent Application Security News
NGINX config tampering enables stealth web traffic hijack
Attackers are hijacking live web sessions by stealthily tampering with NGINX configs, silently relaying traffic via rogue servers.
Group-IB adds CSPM to Unified Risk Platform for cloud
Group-IB has added cloud security posture management to its Unified Risk Platform, automating misconfiguration detection and compliance checks.
Check Point backs Google Cloud to close ASEAN 'Cloud Gap'
Check Point backs Google Cloud tools to close ASEAN's 'cloud gap', promising in-band, AI-driven security without slowing digital growth.
.webp)
Fastly names Rachel Ler VP to drive Asia expansion
Fastly appoints Rachel Ler as Area Vice President of Asia to spearhead edge cloud growth across ASEAN, Greater China and South Korea.
Sirisoft & Red Hat champion automation for AI-ready IT
Sirisoft and Red Hat urge Thai enterprises to treat automation as core AI-ready IT infrastructure, redefining ROI beyond simple cost cuts.
AI speeds coding but costs Singapore teams a day weekly
AI is speeding up coding for Singapore's software teams, but fragmented tools and poor workflows are costing them a day each week.
EPIC Cloud selects Radware for AI-powered application security
EPIC Cloud has partnered with Radware to provide AI-powered managed cloud application security services, enhancing protection for its enterprise customers in Taiwan.
Cyber experts urge SMEs to adopt risk tools amid rising threats
Cyber experts warn that most Philippine SMEs lack cyber risk assessments, urging them to adopt tools like Nozomi Networks amid rising threats and costly breaches.
Radware partners with CHT Security for AI-driven protection
Radware has partnered with CHT Security to enhance AI-powered application security in Taiwan, addressing rising cyber threats amidst escalating DDoS attacks.
TruVisor takes up Prisma Cloud distribution in Southeast Asia
To meet the rising cloud security needs amid the pandemic, Asia's leading tech distributor TruVisor partners with cybersecurity heavyweight Palo Alto Networks to distribute Prisma Cloud in Southeast Asia.
AI shapes cybersecurity trends in APAC: Rackspace Study
AI is increasingly vital for cybersecurity, a Rackspace and Microsoft study shows, revealing investment necessity.
AZ enters ASEAN distribution agreement with Synopsys
Singapore-based AZ Asia-Pacific partners with Synopsys, Inc. to offer application security testing solutions in ASEAN markets.
LIAPP extends into SEA, responds to demand for mobile security
LIAPP, the mobile app cybersecurity service by Lockin Company, plans to expand in Southeast Asia to enhance financial inclusion and combat cyber threats.
SolarWinds: Looking beyond DevOps to fix cybersecurity
The role of DevOps in security has seen increasing popularity due to its sound philosophy around productivity and adaptability.
Hugging Face Transformers flaw enabled remote code
Millions of downloads were exposed to silent code execution as a flaw in Hugging Face Transformers let malicious models run on load.
Datadog launches 100 AI tools for operations & security
The rollout aims to help customers tame rising AI-driven complexity as Datadog adds autonomous monitoring, security and agent oversight tools.
CSC adds .brand domain security to CrowdStrike Marketplace
Customers can now access advice on branded web domains as phishing and impersonation risks push more firms to tighten online controls.
Wallarm launches flat-rate AWS infrastructure discovery
Cloud security teams can now map AWS estates without metered costs rising as visibility improves, easing budget pressure on larger organisations.
Synack expands CREST pathways with two new certifications
Security buyers get a stronger benchmark as CREST-certified testers gain faster access to Synack's vetted red team for client engagements.
.webp)
Broadcom expands Spring security with faster patches
Java developers using Spring will get faster fixes as Broadcom backs day-zero patch access and more secure dependency builds for paying customers.