In this session from the Qualys Cyber Risk Series - Application Security Edition: The field of application security is evolving at an unprecedented rate. Modern browsers have become full-fledged execution environments with rapidly expanding capabilities. JavaScript continues to grow in scope, enabling more complex applications while simultaneously introducing new attack vectors. Traditional security controls are increasingly being bypassed by emerging protocols and evolving exploitation techniques. At the same time, artificial intelligence is reshaping the software development lifecycle by accelerating code generation, automating workflows, and increasing deployment velocity. This surge in automation is driving exponential growth in applications and functionality, but it is also expanding and diversifying the attack surface. Security measures that were once effective are now struggling to keep pace with the speed and complexity of modern development environments. Automation is no longer optional but rather it is a fundamental requirement for securing applications at scale. Security teams must rethink their approach to stay ahead of emerging threats. This talk will examine the evolution of attacker techniques in response to increasing browser capabilities, the security challenges posed by AI-driven code proliferation, the next phase of application security, and the necessity of automation in securing evolving architectures. Jerry Hoff CEO, Maru Security Former Executive Information Security Officer, Sony Electronics

 37      1