Application Security News and Articles
What does the zero-trust security model look like when it’s applied to online fraud and abuse? In this post, I’ll delve into how concepts from zero-trust can be used to fight fraud and abuse with higher accuracy and less user frustration.
The ...
While artificial intelligence (AI) has been around for decades, the introduction of ChatGPT in November...
The post Generative AI is Making Phishing Attacks More Sophisticated… But You Can Remove the Bait with Passwordless Authentication ...
Our thanks to BSidesSF for publishing their presenter’s superlative BSidesSF 2023 content on the organizations’ YouTube channel.
Permalink
The post BSidesSF 2023 – Reed Loden – Closing Ceremony appeared first on Security Boulevard.
Anonymous Sudan gained notoriety with its distributed denial of service (DDoS) attacks, targeting Microsoft in June. Earlier this year, the group was linked to a string of cyber attacks against Israel, Sweden, and other nations. The enigmatic, ...
Cybersecurity is an arms race, pure and simple. As one side enhances its offensive capabilities, the other must respond in kind by improving their defenses. Thus, as threat actors became increasingly skilled at circumventing perimeter security ...
New research from Verizon reveals that ransomware is responsible for a sizable percentage of all recorded security incidents. Despite the alarming statistics raised in the report, the tech giant warns, we’re likely to see continued growth in ...
Check out AppSecCon 2023 on demand and explore software security’s top challenges, best practices and case studies.
The post AppSecCon 2023 is Now On Demand appeared first on Security Boulevard.
Dig Security announced it has added support for Optical Character Recognition (OCR) to the Dig Data Security Platform. Dig can now detect sensitive customer data in image files, such as passports and driver’s licenses, that are stored in ...
JumpCloud is responding to an incident that has triggered a reset of all API keys in order to protect customers and their operations.
The post JumpCloud Says All API Keys Invalidated to Protect Customers appeared first on SecurityWeek.
SAP Remote Function Call (RFC) Vulnerabilities in 2023
ltabo
Thu, 07/06/2023 - 13:44
In 2007, Onapsis CEO & Co-founder Mariano Nuñez presented several vulnerabilities and attacks affecting the RFC Protocol at Black Hat Europe. That ...
Google’s July 2023 security updates for Android patches 43 vulnerabilities, including three exploited in the wild.
The post Android Security Updates Patch 3 Exploited Vulnerabilities appeared first on SecurityWeek.
By implementing ML, organizations can detect a network intrusion, find the anomaly and stop it before any damage is caused.
The post Using Machine Learning to Find Vulnerabilities and Prevent Cyberattacks appeared first on Security Boulevard.
TXOne Networks announced its Stellar solution for defending operational stability. Employing TXOne Networks’ approach to security, Cyber-Physical System Detection and Response (CPSDR), Stellar supports the priorities of security and ...
“To err is human” is as true today as it was when Alexander Pope penned the words over 300 years ago. We all make mistakes, but some are much more costly than others. According to Verizon’s 2022 Data Breach Investigations Report, 82% of ...
It’s hard to imagine a time when the web browser wasn’t the critical enterprise productivity app. Many enterprise workers born in the 1990s likely don’t recall when the web browser wasn’t the primary window to access nearly every office ...
The personal, financial, and health information of over 28,000 individuals stolen in data breach at Pepsi Bottling Ventures.
The post 28,000 Impacted by Data Breach at Pepsi Bottling Ventures appeared first on SecurityWeek.
AI does what humans can’t do alone, even with a SOC—defend against dynamic and progressive cyberattacks.
The post AI in the SOC appeared first on Security Boulevard.
ISACA is joining the European Cyber Security Organisation (ECSO). The membership will work to accelerate ECSO and ISACA’s shared commitment to advancing cybersecurity, fostering collaboration and driving digital trust across Europe. ...
Executive Summary
ReversingLabs researchers recently discovered more than a dozen malicious packages published to the npm open source repository that appear to target application end users while also supporting email phishing campaigns targeting ...
Shell confirms that employee personal information has been stolen after the Cl0p ransomware group leaked data allegedly stolen from the energy giant.
The post Shell Confirms MOVEit-Related Breach After Ransomware Group Leaks Data appeared first ...
