DZone
Thanks for visiting DZone today,
Edit Profile
  • Manage Email Subscriptions
  • How to Post to DZone
  • Article Submission Guidelines
Sign Out View Profile
  • Post an Article
  • Manage My Drafts
Over 2 million developers have joined DZone.
Log In / Join
Refcards Trend Reports
Events Video Library
Refcards
Trend Reports

Events

View Events Video Library

The Latest Security Topics

article thumbnail
Security in the Age of MCP: Preventing "Hallucinated Privilege"
Prevent prompt injection in AI agents: default to read-only, require human approval for changes, and authenticate every tool call with end-user zero-trust permissions.
May 6, 2026
by Nikita Kothari
· 2,381 Views
article thumbnail
Spring Boot Done Right: Lessons From a 400-Module Codebase
Apereo CAS is one of the largest open-source Spring Boot applications in production. Learn about seven battle-tested patterns from its codebase that will improve yours.
May 5, 2026
by Dmitriy Kopylenko
· 2,393 Views · 5 Likes
article thumbnail
Securing the IT and OT Boundary in Geospatial Enterprise Systems
Enterprise GIS platforms blend IT & OT, offering vital operational insight. To protect critical systems, secure the boundary with zero-trust principles and segmentation.
May 4, 2026
by Emily Newton
· 1,832 Views
article thumbnail
Why Playwright Gets Blocked After 200 Requests (And What To Do About It)
Playwright scrapers fail after 200 requests because anti-bot systems cross-reference browser fingerprints against network identity. CDP config and proxy fix.
May 1, 2026
by Josh Mellow
· 2,645 Views
article thumbnail
5 Layers of Prompt Injection Defense You Can Wire Into Any Node.js App
Regex-based input filtering alone won't stop prompt injection. This tutorial walks through a five-layer defense-in-depth strategy for Node.js apps.
April 30, 2026
by Raviteja Nekkalapu
· 2,448 Views
article thumbnail
Clean Code: Package Architecture, Dependency Flow, and Scalability, Part 4
Flat imports, internal for business logic, interfaces at the consumer side — your utils package is an architecture smell.
April 30, 2026
by Vladimir Yakovlev
· 2,006 Views · 1 Like
article thumbnail
Designing a Secure API From Day One
A startup builds API security from day one using identity, mTLS, validation, and automation — embedding defenses into architecture instead of reacting after failures.
April 28, 2026
by Igboanugo David Ugochukwu DZone Core CORE
· 2,037 Views
article thumbnail
Your AD Password Policies Are Security Theater
Active Directory password-complexity policies can be bypassed via certain password-set paths, rendering many common controls mere “security theater.”
April 28, 2026
by Alexei Belous
· 1,850 Views
article thumbnail
Implementing Security-First CI/CD: A Hands-On Guide to DevSecOps Automation
This guide shows how to build a secure CI/CD pipeline with early scanning, policy-as-code, SBOMs, zero trust, and safe AI-driven remediation in DevSecOps.
April 28, 2026
by Boris Zaikin DZone Core CORE
· 2,684 Views
article thumbnail
How AI Is Rewriting the Rules of Software Security: Machine-Speed Delivery, Shifting Risk, and New Control Points
AI-driven development expands attack surfaces; this article shows how continuous security, zero trust, and runtime enforcement scale DevSecOps in AI pipelines
April 27, 2026
by Apostolos Giannakidis DZone Core CORE
· 2,405 Views · 2 Likes
article thumbnail
Security Readiness Checklist: From AI Threats to Software Supply Chain Defense
Detect APTs with behavioral analytics and log correlation, building baselines and linking events to turn weak signals into actionable security detections.
April 27, 2026
by Akanksha Pathak DZone Core CORE
· 1,966 Views
article thumbnail
Treat PII as Toxic: Designing Secure Systems That Contain the Blast Radius
PII is toxic data. Design systems to isolate, encrypt, restrict access, and minimize breach impact by containing the blast radius.
April 27, 2026
by Satyam Nikhra
· 1,791 Views
article thumbnail
Preventing Prompt Injection by Design: A Structural Approach in Java
AI Query Layer lets you run safe, schema-validated AI queries with LLMs, managing inputs and outputs efficiently for finance, analytics, and apps.
April 24, 2026
by suman Baatth
· 3,862 Views · 4 Likes
article thumbnail
Understanding the Shifting Protocols That Secure AI Agents
AI protocols are being adopted faster than security teams can assess them. Learn agentic protocol basics, their maturity levels, and when to implement them.
April 24, 2026
by Meir Wahnon
· 2,670 Views · 2 Likes
article thumbnail
AWS vs GCP Security: Best Practices for Protecting Infrastructure, Data, and Networks
A practical guide to securing AWS and GCP using IAM, encryption, network controls, and continuous monitoring to help improve resilience on the cloud.
April 24, 2026
by Kadir Arslan
· 2,647 Views
article thumbnail
Advanced Middleware Architecture For Secure, Auditable, and Reliable Data Exchange Across Systems
A secure, high-performance middleware using JWT, async messaging, and cryptographic auditing enables reliable, scalable, and fully traceable data exchange across systems.
April 23, 2026
by Abhijit Roy
· 2,652 Views
article thumbnail
Algorithmic Circuit Breakers: Engineering Hard Stop Safety Into Autonomous Agent Workflows
Autonomous agents fail by persisting: they retry, replan, and chain tools, increasing risk, cost, and potential blast radius without strict safety controls.
April 22, 2026
by Williams Ugbomeh
· 2,562 Views · 1 Like
article thumbnail
The DevOps Security Paradox: Why Faster Delivery Often Creates More Risk
DevOps speeds delivery and risk. Without built-in security, vulnerabilities reach production fast — DevSecOps embeds automated security into the pipeline.
April 21, 2026
by Jaswinder Kumar
· 3,546 Views · 2 Likes
article thumbnail
Delta Sharing vs Traditional Data Exchange: Secure Collaboration at Scale
Share live Delta tables with external partners securely and at scale — no data copies needed — fully governed and audited via Unity Catalog.
April 21, 2026
by Seshendranath Balla Venkata
· 2,199 Views · 1 Like
article thumbnail
Automating Threat Detection Using Python, Kafka, and Real-Time Log Processing
Durable stream, stable schema, entity-keyed partitions, DLQ for failures normalized field detections stay portable as sources evolve.
April 21, 2026
by Krishnaveni Musku
· 2,077 Views
  • Previous
  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • ...
  • Next
  • RSS
  • X
  • Facebook

ABOUT US

  • About DZone
  • Support and feedback
  • Community research

ADVERTISE

  • Advertise with DZone

CONTRIBUTE ON DZONE

  • Article Submission Guidelines
  • Become a Contributor
  • Core Program
  • Visit the Writers' Zone

LEGAL

  • Terms of Service
  • Privacy Policy

CONTACT US

  • 3343 Perimeter Hill Drive
  • Suite 215
  • Nashville, TN 37211
  • [email protected]

Let's be friends:

  • RSS
  • X
  • Facebook
×