Application Security News and Articles
As security vulnerabilities are reported to you time and again, you may ask yourself: “Why don’t these developers learn the lesson?” The next thing you may think is: “We should train developers, so they stop making these mistakes.” ...
In this Help Net Security interview, Gerwin van der Lugt, CTO at Oddity, discusses the future of surveillance and AI’s influence. He also delves into how organizations can prevent their systems from perpetuating biases or violating ...
In this Help Net Security video, Eve Maler, CTO at ForgeRock, discusses how digital identity can help create a more secure connected car experience and what car manufacturers should consider regarding data privacy regulation.
The post How digital ...
Fragmented access policies are top security concern in multi-cloud environments, with more than 75% of enterprises reporting they do not know where applications are deployed and who has access to them, according to Strata Identity. Cloud security ...
The enterprise perimeter is now a massively decentralized IT landscape characterized by large-scale adoption of cloud platforms, digital services, and an increasingly tangled digital supply chain. Regulators are on the march as new threat actors ...
An introduction to a new blog series spotlighting Coalfire’s upcoming 5th Annual Penetration Risk report.
The post Behind the eight-ball: Why companies struggle with penetration risk appeared first on Security Boulevard.
Software-as-a-service (SaaS) applications have become foundational to enterprises that use them to drive productivity, improve the customer experience, and connect an increasingly distributed workforce. That said, the software also increases ...
This document discusses the importance and risks associated with End-User Computing (EUC) tools such as spreadsheets and databases that have become integral to business operations. With the rise of new EUC alternatives, the risks to business data ...
Kubernetes security: three new interrelated vulnerabilities affecting the Windows versions of Kubelet and the Kubernetes CSI proxy. Learn more.
The post Kubelet vulnerabilities on Windows nodes: CVE-2023-3676, CVE-2023-3955 and CVE-2023-3893 ...
Since its beginning, ForgeRock has been focused on enabling people to simply and securely access the connected world. To support this vision, our security and compliance principles guide how we deliver products and services. ForgeRock has ...
Many thanks to BSidesTLV for publishing their presenter’s erudite BSidesTLV 2023 security content on the organizations’ YouTube channel.
Permalink
The post BSidesTLV 2023 – Ido Veltzman – (Lady|)Lord Of The Ring appeared first ...
With Know Your Gamer (KYG) policies, gaming companies can accurately verify the identities of those who are active on their sites. By implementing identity verification platforms, these companies can lessen their exposure to bad actors who want ...
... Read more »
The post Back from Hacker Summer Camp 2023: One CTO’s Experience appeared first on Deepfactor.
The post Back from Hacker Summer Camp 2023: One CTO’s Experience appeared first on Security Boulevard.
SpyCloud has closed a $110 million growth round commitment of primary and secondary capital led by Riverwood Capital, a global investor in high-growth technology companies. More than 500 market leaders across every industry – including half of ...
Enterprise security teams are having problems keeping pace with the rapid evolution of increasingly sophisticated threat groups despite having the latest protections in place, according to the results of a survey released Wednesday by ...
The private equity firm merges the newly acquired ForgeRock with Ping Identity, combining two of the biggest names in enterprise IAM market.
The post Thoma Bravo Merges ForgeRock with Ping Identity appeared first on SecurityWeek.
Financially-motivated attackers have exploited a zero-day vulnerability in WinRAR (CVE-2023-38831) to trick traders into installing malware that would allow them to steal money from broker accounts. “This vulnerability has been exploited ...
HYAS Chief Commercial Officer (CCO), Mike Barker, has a broad and deep background in engineering as well as executive leadership roles. But this is his first time serving as CCO, a position that’s relatively uncommon — but proves advantageous ...
Multiple New Campaigns in 2023 Demonstrate The Malware Family Has Been Redeveloped to Remain a Popular And Prominent Threat
EclecticIQ analysts observe the malware family targeting financial information to be used for immediate gain as well as ...
Seclore has announced in partnership with Nagarro, the general availability of the Nagarro-Seclore Secure Collaboration Solution. This joint solution offers businesses safe, effective, and compliant collaboration, bridging the divide between ...
