Application Security News and Articles
Attackers have started exploiting CVE-2023-28121, a recent critical vulnerability in the WooCommerce Payments WordPress plugin.
The post WordPress Sites Hacked via Critical Vulnerability in WooCommerce Payments Plugin appeared first on SecurityWeek.
VirusTotal has suffered a data leak that exposed the names and email addresses of 5,600 of its registered users. The leaked data reportedly includes information about employees of US and German intelligence agencies (among others). VirusTotal ...
Netcraft secures first funding with over $100 million from Spectrum Equity and names technology executive Ryan Woodley as new CEO. Ryan Woodley has decades of experience leading growth-oriented technology companies and an established track record ...
One of the biggest challenges faced by regulated and non-regulated companies is assessing whether or not another business is safe to work with. Existing approaches rely on manual research across multiple siloed sources. This is time-consuming and ...
The advent of AI made identity the most-targeted part of the attack surface. But without AI, identity is a sitting duck.
The post The Two Faces of AI in Identity Management appeared first on Security Boulevard.
New US cyber program will label smart devices that are considered safer and less vulnerable to attacks.
The post White House Unveils Cybersecurity Labeling Program for Smart Devices appeared first on SecurityWeek.
In our interconnected digital landscape, grasping the concept of social engineering is paramount. More often than not, insider threats are becoming increasingly complex, making it a necessity to comprehend and guard against such tactics. This ...
Splunk and Microsoft are partnering to build Splunk’s enterprise security and observability offerings on Microsoft Azure. Additionally, for the first time, Splunk solutions will be available for purchase on the Microsoft Azure Marketplace. ...
Daniel Kelley was just 18 years old when he was arrested and charged on thirty counts – most infamously for the 2015 hack of UK telecoms firm TalkTalk. In 2019 he was convicted and sentenced to four years in prison.
The post Hacker ...
Malicious packages are a growing threat to businesses and organizations of all sizes. These packages are often disguised as legitimate software, but they can contain harmful code that can steal data, install malware, or disrupt operations. In ...
The British company secures $100 million in funding and announced the hiring of a new chief executive to pursue global expansion plans.
The post Netcraft Raises $100M, Hires New CEO for Global Expansion appeared first on SecurityWeek.
At least two new Adobe ColdFusion vulnerabilities have been exploited in the wild, including one that has not been completely patched by the software giant.
The post Two New Adobe ColdFusion Vulnerabilities Exploited in Attacks appeared first on ...
Decentralized web hosting offers a unique method that moves away from the typical dependence on centralized servers for website and content hosting. It avoids the conventional system of confining data and files to a sole server or a few clustered ...
Norway's data protection agency wants to ban Facebook and Instagram owner Meta from using the personal information of users for targeted advertising, threatening a $100,000 daily fine if the company continues.
The post Norway Threatens $100,000 ...
82% of Android devices and 38% of iOS devices have security vulnerabilities. Furthermore, business apps have a threefold higher chance of leaking sensitive login credentials than average apps. These findings highlight the immediate need for ...
Red Siege has developed and made available many open-source tools to help with your penetration testing work. The company plans to continue to support the tools listed below, whether in the form of bug fixes or new features. Give them a try, ...
I recently sat down with CyberBytes podcast host and co-founder of Aspiron Search Joseph Cooper to discuss the insider threat and the real risk to enterprises. In this episode, I talk about the some of the real-life investigations that the DTEX ...
Consumer expectations will reshape the needs and economics of the internet, according to Cisco. People in EMEA are rethinking what they rely on the internet for, balancing classic demands for speed and reliability, with the intensifying needs of ...
In an era where cyber threats continue to evolve, healthcare organizations are increasingly targeted by malicious actors employing multiple attack vectors, according to Trustwave. In its new research, Trustwave SpiderLabs has documented the ...
Machine identities are exploding as businesses shift to the cloud, adopt containerization, and use more mobile and IoT devices.
The post Four Tips to Solving Certificate Problems — Without Creating New Ones appeared first on Keyfactor.
The post ...
