Application Security News and Articles
Email attacks have increased in both sophistication and volume since the start of the year, according to Abnormal Security. Examining data since 2013, Abnormal identified a massive increase in third-party applications (apps) integrated with ...
Organizations globally face unprecedented challenges in safeguarding their sensitive data, critical assets, and reputation from cyber threats. Legacy authentication methods are not sufficient to thwart sophisticated attacks and evolving risks. ...
Great blog posts are sometimes hard to find (especially on Medium), so I decided to do a periodic list blog with my favorite posts of the past quarter or so.
Here is the next one. The posts below are ranked by lifetime views. This covers both ...
Finding the right equilibrium between leveraging generative AI for cybersecurity and mitigating its potential drawbacks is crucial. Explore the challenges and opportunities that lie ahead in this thought-provoking post.
The post The Road Ahead: ...
In the first post in this series, On (Structured) Data, we talked about the gap area of offensive structured data and ended with the question, “If all of our offensive tools produced and worked with structured data, what would be possible?” ...
Cequence is pleased to announce that we have been named to the Enterprise Security Tech 2023 Cyber Top 20 Awards List for our Unified API Protection (UAP) platform! The Cyber Top 20 honors organizations shaping the future of cybersecurity and ...
The post Fortra Introduces New Integrations for Offensive Security appeared first on Digital Defense.
The post Fortra Introduces New Integrations for Offensive Security appeared first on Security Boulevard.
Executive Overview Over the last three years, infostealer malware variants have become a “popular trend” in the cybercriminal Malware-as-a-Service (MaaS) ecosystem. Doing precisely as their category implies, these malware variants steal ...
CrowdStrike's new managed service focuses on disrupting cybercriminals who compromise credentials.
The post CrowdStrike Launches Managed Service Focused on Protecting Credentials appeared first on Security Boulevard.
See how SafeBreach Labs Researchers uncovered multiple attack vectors that exploit the Windows Defender update process to gain control.
The post Defender Pretender: When Windows Defender Updates Become a Security Risk appeared first on ...
Thanks are in order to BSides Leeds for publishing their presenter’s outstanding BSides Leeds 2023 security content on the organizations’ YouTube channel.
Permalink
The post BSides Leeds 2023 – Michael Ndon – Stop Breaking Into ...
The White House launched an Artificial Intelligence Cyber Challenge competition for creating new AI systems that can defend critical software from hackers.
The post White House Offers Prize Money for Hacker-Thwarting AI appeared first on ...
Critical vulnerabilities discovered in WD and Synology NAS devices could have exposed the files of millions of users.
The post Western Digital, Synology NAS Vulnerabilities Exposed Millions of Users’ Files appeared first on SecurityWeek.
August is off to a busy start for cyberthreats. In this article, we’ll recap Microsoft’s August Patch Tuesday announcement and the new PaperCut vulnerability. Read on to learn more. What’s the update from Microsoft and PaperCut? ...
NetRise announced advanced capabilities for maintaining and working with Software Bill of Materials (SBOMs) and support for the CISA’s KEV Catalog for managing and understanding the risks associated with software components in the firmware ...
via the comic artistry and dry wit of Randall Munroe, resident at XKCD!
Permalink
The post Randall Munroe’s XKCD ‘Solar Panel Placement’ appeared first on Security Boulevard.
Gurucul has launched its new generative AI capability called Sme (Subject Matter Expert) to accelerate threat detection, supercharge security investigations and automate responses. Sme AI empowers Security Operations Center (SOC) analysts with ...
Dynatrace introduced Security Analytics, a new Dynatrace platform solution designed to help organizations better defend against threats to their hybrid and multicloud environments. Dynatrace Security Analytics leverages Davis AI, which combines ...
Threat actors are using the EvilProxy phishing platform to get around multi-factor authentication (MFA) protections in the Microsoft 365 accounts of high-level corporate executives in a sprawling campaign that highlights the growing popularity ...
Vicarius launched vuln_GPT, an LLM model trained to generate remediation scripts for software vulnerabilities in the race to find and fix vulnerabilities faster than hackers. The vuln_GPT engine will be freely offered within vsociety, Vicarius’ ...
