Application Security News and Articles
Corvus Insurance has unveiled Corvus Signal, the risk prevention solution that brings together brokers, policyholders, and Corvus security experts in partnership. Corvus Signal has been shown to reduce cyber breach frequency and cost by up to 20 ...
If you pay attention to data breaches in the news, you may notice that healthcare entities are attacked often, and the incidents often affect hundreds of thousands, to millions, of patients. The HIPAA Journal examined the amount of healthcare ...
Microsoft Teams recently made it into a top 10 list of most-targeted applications—and that should be a warning to security teams whose organizations use it. The app is one of the “most targeted sign-in applications, with nearly 40% of ...
A few short years ago, cybercrime was all about stealing payment card data, usually for resale via dark web markets.
The post Understanding Cybercriminal Motivations Over Time appeared first on Security Boulevard.
The second-largest health insurer in Massachusetts was the victim of a ransomware attack in which sensitive personal information as well as health information of current and past members may have been compromised.
The post Major Massachusetts ...
In Kubernetes, a host port configuration allows you to expose a port from your container to the host node's interface. This enables external systems to access a service inside a container through the host node's IP address and the specified host ...
In the world of cyberattack response and recovery, timing is everything. Attacks discovered quickly are likely in their early phase. That’s when the odds of recovering affected assets, undoing whatever damage has been inflicted and avoiding ...
Welcome to the latest edition of The Week in Security, which brings you the newest headlines from both the world and our team across the full stack of security: Application security, cybersecurity, and beyond. This week: North Korean APT Lazarus ...
The United States and South Korea have crafted a “Strategic Cybersecurity Cooperation Framework.” The framework is part of recent bilateral accords intended to signal mutual adversaries and reaffirm the “ironclad commitment to what has ...
There are a lot of options for software security testing tools. How do you know which ones are right for you? In this blog post, I'm going to cover a simple two-step process that will allow you to pick the best software security tool for your ...
Apria Healthcare is informing 1.86 million individuals of personal information compromise in 2019 and 2021 data breaches.
The post Apria Healthcare Notifying 2 Million People of Years-Old Data Breaches appeared first on SecurityWeek.
In 2022, Arkose Labs performed a comprehensive analysis of current threats across multiple industries to pinpoint the frequency and types of attacks in today’s landscape. Gain valuable insights into emerging threats for eCommerce and travel, ...
European XDR and threat intelligence provider Sekoia.io has raised €35 million ($37.5 million) in Series A funding.
The post European Cybersecurity Firm Sekoia.io Raises $37.5 Million appeared first on SecurityWeek.
The National Security Agency (NSA) and Five Eyes partner agencies have identified indicators of compromise associated with a People’s Republic of China (PRC) state-sponsored cyber actor dubbed Volt Typhoon, which is using living off the land ...
Data security is rising through the ranks as one of the most important aspects of the K-12 school system. As more administrators look for ways to safeguard student data, one tactic is taking the spotlight: data loss prevention. In this blog, ...
A clever phishing campaign aimed at stealing users’ business email account credentials by impersonating OpenAI, the company behind the ChatGPT chatbot, has been spotted by Inky researchers. The attack ChatGPT has quickly gained popularity ...
Industry standard frameworks and guidelines often lead organizations to believe that deploying more security solutions will result in greater protection against threats.
The post Today’s Cyber Defense Challenges: Complexity and a False Sense of ...
Fortinet’s 2023 State of Operational Technology and Cybersecurity Report shows a drop in the number of breaches and CISOs being increasingly responsible for OT cybersecurity.
The post Drop in Insider Breaches Drives Decline in Intrusions at OT ...
GitLab CE/EE version 16.0.1 patches a critical arbitrary file read vulnerability tracked as CVE-2023-2825.
The post GitLab Security Update Patches Critical Vulnerability appeared first on SecurityWeek.
Barracuda Networks is warning customers about CVE-2023-2868, a zero-day exploited to hack some Email Security Gateway (ESG) appliances.
The post Zero-Day Vulnerability Exploited to Hack Barracuda Email Security Gateway Appliances appeared first ...
