Application Security News and Articles
See what’s new in TrustCloud Our team has been hard at work creating updates and new features just for you, see what we’ve been up to over the last month. TrustCloud See TrustCloud’s new Platform Experience It’s shiny and new, made ...
The Akira ransomware group, which launched four months ago, has racked up at least 63 victims, most of which are small and midsize businesses, according to a new report from Arctic Wolf. The bulk of the targeted companies – 45 – come from the ...
The post Building a strong human risk management program: The ultimate checklist appeared first on Click Armor.
The post Building a strong human risk management program: The ultimate checklist appeared first on Security Boulevard.
Starting May 15, 2023, threat actor Storm-0558 illicitly employed forged Azure Access tokens tokens to gain unauthorized access to user emails in around 25 organizations, encompassing government agencies and various consumer accounts hosted on ...
In this first edition of Voices from Validate, panelists shared recommendations for overcoming the communications gap when discussing security risk at the board level. They explained why building a strategy that connects business impact to ...
There has been a lot of attention paid to ransomware over the last few years, and with good reason. In 2021 Fierce Healthcare reported a 470% increase in ransomware attacks on the healthcare industry in 2020 compared to the previous year. Threat ...
Part 2: The Challenges This is the second installment in a two-part blog series focused...
The post Moving to Passwordless Authentication, Part 2 appeared first on Axiad.
The post Moving to Passwordless Authentication, Part 2 appeared first on ...
The attack surface of cloud-native applications continues to grow as adversaries look to exploit misconfigurations and vulnerabilities throughout the application life cycle. In response, the industry has turned to Cloud Native Application ...
Thanks are in order to BSides Leeds for publishing their presenter’s outstanding BSides Leeds 2023 security content on the organizations’ YouTube channel.
Permalink
The post BSides Leeds 2023 – Lorna Armitage – ChatGPT And The ...
Discover the complex bond between AI and software development, as malicious actors exploit AI code generation, posing unprecedented security challenges to the software supply chain. Read all about it here!
The post FYI: the dark side of ChatGPT ...
Threat intelligence services provider QuoIntelligence has raised €5 million ($5.5 million) in seed funding.
The post European Threat Intelligence Firm QuoIntelligence Raises $5.5 Million in Seed Funding appeared first on SecurityWeek.
CISA Director Jen Easterly says more is needed to defend the integrity and resiliency of the election process ahead of the 2024 election.
The post Head of US Cybersecurity Agency Sees Progress on Election Security, With More Work Needed for 2024 ...
The TSA has released updated cybersecurity requirements for pipeline owners and operators, instructing them to test assessment and incident response plans.
The post TSA Updates Pipeline Cybersecurity Requirements appeared first on SecurityWeek.
We discuss a real-life example of a zero-day exploit, focusing on the MOVEit Transfer Software, and how MixMode can detect and mitigate such threats before they become widespread.
The post Detecting the MOVEit Zero-Day: How MixMode AI Stays Ahead ...
Seraphic Security has extended its enterprise browser security solution to digital workplace apps. The Seraphic Security Platform works across any browser and any device ensuring both safe browsing and enforcing corporate policies across ...
The Securities and Exchange Commission is trying to bring some order to a sprawling and at times unruly enterprise IT world besieged by cyberthreats and rapidly evolving technologies. The SEC this week said publicly traded companies now have four ...
As we continue to deploy more applications and services to production in Kubernetes environments, our financial strategies around managing costs in Kubernetes must adapt accordingly. The FinOps Foundation offers a Maturity Model that describes a ...
Internet-connected Peloton workout equipment is impacted by multiple security risks, such as having USB debugging enabled.
The post Multiple Security Issues Identified in Peloton Fitness Equipment appeared first on SecurityWeek.
Thinking through the good, the bad, and the ugly now is a process that affords us “the negative focus to survive, but a positive one to thrive."
The post The Good, the Bad and the Ugly of Generative AI appeared first on SecurityWeek.
In a significant move toward enhancing business continuity and data security for enterprises, N2WS has launched the latest version of N2WS Backup and Recovery. This latest release encompasses substantial advancements and new integrations designed ...
