Application Security News and Articles
Tech innovation moves pretty fast. But as the landscape continues to evolve and expand, it becomes increasingly difficult for IT buyers to find the time do effective due diligence on prospective suppliers. Given the critical importance of ...
Cybersecurity—and particularly cybercrime—has always been a volatile field.
The post Cybercrime Predictions from an Industry Veteran: Dr. Chase Cunningham appeared first on Security Boulevard.
Instead of deploying new point products, CISOs should consider sourcing technologies from vendors that develop products designed to work together as part of a platform.
The post Consolidate Vendors and Products for Better Security appeared ...
The Cyber Resilience Act is a world first. Europe’s proposed legislation will set minimum cybersecurity standards for connected devices and require products to stay up-to-date throughout their lifespan. The bill will be a major win for ...
Japanese pharmaceutical company Eisai says it has taken systems offline after falling victim to a ransomware attack.
The post Pharmaceutical Giant Eisai Takes Systems Offline Following Ransomware Attack appeared first on SecurityWeek.
How do you measure the cost of failure? This was a question posed by SecureIQLab’s VP of Research and Corporate Relations, David Ellis, and senior analyst Randy Abrams, during a conversation at RSA Conference 2023. The knee-jerk, ...
Vulnerabilities found by a researcher in a Honda ecommerce platform used for equipment sales exposed customer and dealer information.
The post Vulnerabilities in Honda eCommerce Platform Exposed Customer, Dealer Data appeared first on SecurityWeek.
Researchers believe North Korea-linked Lazarus Group has stolen at least $35 million in cryptocurrency from Atomic Wallet.
The post North Korean Hackers Blamed for $35 Million Atomic Wallet Crypto Theft appeared first on SecurityWeek.
Organizations need to uncover their internet-facing assets for application and data cybersecurity best practices Many organizations increasingly rely on internet-facing assets, such as web applications, cloud services, and remote access ...
The internet is a bit like Star Wars: there’s a light side and a dark side. As a K-12 district, it’s important to steer students away from the latter. No, the galaxy’s fate may not hang in the balance — but that of your school certainly ...
The Cl0p cyber extortion crew says that the many organizations whose data they have pilfered by exploiting a vulnerability in the MOVEit Transfer solution have until June 14 to get in contact with them – or they will post their name on ...
In today’s hyper-connected world, risk management has evolved beyond mere protection against external threats. Now, organisations must also navigate the terrain of internal threats – a task that requires setting up an Insider Risk Programme ...
Cisco releases fixes for a critical-severity vulnerability in Expressway series and TelePresence Video Communication Server (VCS).
The post Cisco Patches Critical Vulnerability in Enterprise Collaboration Solutions appeared first on SecurityWeek.
With each passing year, it seems data breaches become more costly to victims, and 2022 was no exception. Verizon’s annual Data Breach Investigations Report found, for instance, that the average cost of ransomware attacks doubled over the past ...
Macros have long been a favored attack vector for cybercriminals looking to infect devices. In a 2022 study of 35 million pieces of malware on the dark web, 87% used macros to infect devices. Microsoft recognized this risk, and in February, it ...
Software vulnerabilities are among the biggest security risks organizations face today, and several critical vulnerabilities have already been revealed in 2023. Software bugs plague enterprises and small organizations alike and wreak havoc on ...
Barracuda Networks is telling customers to immediately replace hacked ESG email security appliances regardless of the patches they installed.
The post Barracuda Urges Customers to Replace Hacked Email Security Appliances appeared first on ...
Imagine this: You open your email and find the following message: “I am a hacker, and I’ve gained access to your operating system. I’ve been watching you for months…”
The post Don’t panic! These scammers don’t actually have ...
Articles related to cyber risk quantification, cyber risk management, and cyber resilience.
The post MOVEit File Transfer Zero-day Compromises Multiple Organizations appeared first on Security Boulevard.
When Threat Intelligence Platform (TIP) and Security Orchestration, Automation and Response (SOAR) first arrived a decade or so ago, they were heralded as breakthrough advances.
Related: Equipping SOCs for the long haul
TIP and SOAR may … ...
