Veracode State of Software Security
Long-running data on application security flaws and remediation.
The report tracks how quickly organizations fix vulnerabilities, the accumulation of 'security debt', and the impact of factors like scan frequency and developer training. It is a staple reference for application security programs.
FAQs
Veracode State of Software Security: frequently asked questions
What is Veracode State of Software Security?
Veracode's State of Software Security analyzes scan data from hundreds of thousands of applications to report on flaw prevalence, security debt, and remediation rates. It is one of the longest-running data-driven AppSec reports.
Where is Veracode State of Software Security based?
Veracode State of Software Security is based in Burlington, MA, USA.
What is Veracode State of Software Security listed under on Cyber Resources?
Veracode State of Software Security is listed in the Research & Reports category of Cyber Resources, the curated directory of the cybersecurity marketing and growth ecosystem.
More Research & Reports
Verizon Data Breach Investigations Report (DBIR)
New York, USA
The Verizon DBIR analyzes thousands of confirmed breaches and security incidents contributed by law enforcement, forensic firms, and cyber insurers to map how breaches happen and who is behind them. Published annually, it is the most widely cited breach benchmark in the industry.
IBM Cost of a Data Breach Report
Armonk, USA
IBM's Cost of a Data Breach Report surveys hundreds of breached organizations across more than a dozen countries to quantify average breach cost, time to identify and contain, and cost factors such as AI governance and shadow AI. Research is conducted independently by the Ponemon Institute.
Mandiant M-Trends
Reston, USA
Mandiant's M-Trends draws on hundreds of thousands of hours of incident-response engagements to report on dwell time, initial infection vectors, and threat-actor tactics. A 17+ year staple for defenders, now published under Google Cloud.