Application Security News and Articles
Introduction
Let me paint a picture for you. You’re on a red team operation, operating from your favorite C2, and have just landed on a user’s workstation. You decide to take a look at their DNS cache to get a list of internal resources the ...
Bishop Fox has expanded its social engineering testing services, which are an integral part of the company’s Red Team portfolio. In contrast to narrow and rudimentary security awareness solutions, Bishop Fox’s services emulate complex, ...
If you are managing development teams using Kubernetes, you need to be able to easily find, triage, and fix problems quickly. You likely already have existing tools in place to help with ticketing or your CI/CD pipeline tooling that your ...
Accomplished sales and channel leader joins the AI and ML-powered cybersecurity platform provider to accelerate growth and support partners as they expand their security services.
The post Seceon Hires Peter Christou to Drive UK and EU Expansion ...
As organizations increasingly operate within a hybrid on-premises and cloud environment, the need for advanced threat detection mechanisms becomes vital. Today I explore how The MixMode Platform leverages AWS CloudTrail and VPC flow logs to ...
Cynerio has unveiled the further integration of generative AI into its existing offerings. “It is clear that the healthcare industry will continue to face increasing cyber attacks,” said Leon Lerman, CEO of Cynerio. “With 89% of ...
Ask any three people to define cyberwar and you will get three different answers. But as global geopolitics worsen and aggressive cyberattacks increase, this becomes more than an academic question.
The post What is Cyberwar? appeared first on ...
Lockbit 3.0 is currently the most active ransomware group, NCC Group says in its most recent Threat Pulse report, but new ransomware groups like 8Base and Akira are rising in prominence. Collectively, the various ransomware groups revealed 436 ...
Bitdefender has agreed to acquire Horangi Cyber Security to address the growing demand for advanced, streamlined management of cybersecurity, compliance, and governance of multi-cloud environments. As organizations continue to accelerate cloud ...
Invary has raised $1.85 million in a pre-seed funding round led by Flyover Capital to launch its runtime integrity solution.
The post Invary Raises $1.85 Million in Pre-Seed Funding for Runtime Integrity Solution appeared first on SecurityWeek.
Shared processes, audit cadences, and continuous monitoring can all support supply chain security – but how do you achieve it? Read this post for best practice tips.
The post How to Manage Security Risks in a Supply Chain appeared first on ...
Astrix Security raises $25 million in Series A funding for its solution designed to help enterprises secure non-human identities.
The post Astrix Raises $25 Million to Help Enterprises Secure App-to-App Connections appeared first on SecurityWeek.
Thales announced a new partnership with Google Cloud to develop new data security capabilities powered by generative AI that will improve companies’ ability to discover, classify and protect their most sensitive data. The partnership is ...
Web development has undergone dramatic changes since its inception. However, one pervasive problem still exists: Frontend developers are still required to lean on backend developers to use APIs, write backend code or resolve security issues. This ...
The security policies underpinning the nation’s critical infrastructure sectors and protecting them from cyberattacks are outdated and require comprehensive overhaul, according to a recent report by the Cyberspace Solarium Commission 2.0. ...
Socure acquired Berbix, a San Francisco-based startup that developed a high-accuracy document verification solution with a patent-pending forensics engine able to detect spoofed IDs – including AI-generated fakes – that are visually ...
Recorded Future underlines threats to submarine telecommunication cables, such as the risk of intentional sabotage and spying by nation-state threat actors.
The post Submarine Cables at Risk of Nation-State Sabotage, Spying: Report appeared first ...
The official Call for Presentations for SecurityWeek’s 2023 ICS Cybersecurity Conference, being held October 23-26, 2023 at the InterContinental Atlanta is open through Friday, June 30, 2023.
The post Reminder: CFP for ICS Cybersecurity ...
Emails, phone numbers, calls logs, and collected messages stolen in data breach at Android stalkware LetMeSpy.
The post Sensitive Information Stolen in LetMeSpy Stalkerware Hack appeared first on SecurityWeek.
It is an unfortunate reality that when an organization falls victim to a cyber-attack or data leak, the CISO is often the first to face the consequences. In this blog post, we delve into the unfairness of blaming CISOs for security ...
