Application Security News and Articles
In early July, Microsoft announced Storm-0558 where a Chinese threat actor used forged authentication tokens to access the information – primarily email accounts – of about 25 organizations. This attack included some significant organizations ...
The group dedicated to securing Rust — one of the hottest programming languages among development teams today, one embraced by Microsoft, Amazon, and the U.S. government — issued its first progress report last week.
The post Rust programming ...
Edgio today announced it has added the ability to use machine learning algorithm to discover and protect application programming interfaces (APIs) to the portfolio of application security services it makes available via its content delivery ...
Reports last month of the WormGPT and FraudGPT AI chatbots were the latest examples of bad actors leveraging the accelerated work being done in the generative AI field with applications like ChatGPT to create malicious tools that become available ...
Thanks are in order to BSides Leeds for publishing their presenter’s outstanding BSides Leeds 2023 security content on the organizations’ YouTube channel.
Permalink
The post BSides Leeds 2023 – Rael Sasiak-Rushby – Whose Input ...
Schneider Electric launched a Managed Security Services (MSS) offering to help customers in OT environments address the increased cyber risk associated with the demand for remote access and connectivity technologies. With the manufacturing ...
Tel Aviv, Israel, Aug. 1, 2023 – Guardz, the cybersecurity company securing and insuring SMEs, today disclosed the existence of a Hidden Virtual Network Computing (hVNC) malware targeting macOS devices. The malware, which is available on the ...
Monte Carlo announced Data Product Dashboard, a new capability that allows customers to define a data or AI product, track the health of corresponding data tables and training sets, and report on the product’s reliability to business ...
San Francisco startup Socket raises $20 million as investors continue to bet on companies in the open source software security category.
The post Socket Scores $20M as Investors Bet on Software Supply Chain Security Startups appeared first on ...
The financial services industry handles vast amounts of highly sensitive financial information, including customer data, transaction records, and intellectual property, making them a prime target for cyber attacks.
The post Protecting Your ...
Cisco is enhancing its Extended Detection and Response (XDR) solution. By adding recovery to the response process, Cisco XDR is redefining what customers should expect from security products. This announcement brings near real-time recovery for ...
The field of cybersecurity is facing a critical challenge that demands a paradigm shift in how we approach security. In a recent cybersecurity article by Renee Duddly of ProPublica titled "At What Point Does Profit Trump Safety?" the need for ...
New York, NY, Aug. 1, 2023– AppViewX, a leader in automated machine identity management (MIM) and application infrastructure security, today announced the results of a research study conducted by Enterprise Management Associates (EMA) on ...
TL;DR – Comparing popular Kubernetes security and compliance frameworks, how they differ, when to use them, common goals,
The post Kubernetes Security Compliance Frameworks appeared first on ARMO.
The post Kubernetes Security Compliance ...
Praetorian is excited to announce the upcoming release of Konstellation, a new open-source tool that simplifies Kubernetes role-based access control (RBAC) data collection and security analysis. Join us at Black Hat Arsenal 2023 for a deeper dive ...
I’ve spent a lot of time recently writing about FB account cloning, simply because I come across it so often. I haven’t paid nearly so much attention to real account hacking because I don’t come across it nearly so often, However, having ...
Menlo Security announced HEAT Shield and HEAT Visibility, a suite of threat prevention capabilities designed to detect and block highly evasive threats targeting users via the web browser. Menlo Security HEAT Shield detects and blocks phishing ...
In the world of containerized everything, Kubernetes has emerged as a platform to automate the process of deployment, scaling, and management of these applications and services. However, as your Kubernetes environments expand, maintaining control ...
Author: Dylan Duncan A new phishing tactic utilizing Google Accelerated Mobile Pages (AMP) has hit the threat landscape and proven to be very successful at reaching intended targets. Google AMP is an open-source HTML framework used to build ...
SpecterOps announces version 5.0 of BloodHound Active Directory mapping tool with
enterprise-grade deployment, usability, and UI.
The post SpecterOps Updates BloodHound Active Directory Mapping Tool appeared first on SecurityWeek.
