Application Security News and Articles
View on demand We live in a digital universe where an increasing number of businesses are adopting enterprise cloud applications unleashing new waves of opportunity. However, the cloud also presents the biggest business threats challenging ...
CMMC 2.0, an evolution of the NIST 800-171 framework, introduces more challenging controls, official certification requirements, and higher stakes for organizations required to comply. And with impending updates to the framework and a go-live ...
EV applications usually interact with each other and third-party services and platforms via APIs or JavaScript plugins. These applications process both sensitive, personal driver information and information about the vehicle. In addition, they ...
Registration is open for SecurityWeek's ICS Cybersecurity Conference, taking place October 23-26, 2023 in Atlanta.
The post Registration Now Open: 2023 ICS Cybersecurity Conference | Atlanta appeared first on SecurityWeek.
Russian cybercrime group TA505 has been observed using new hVNC malware called Lobshot in recent attacks.
The post New ‘Lobshot’ hVNC Malware Used by Russian Cybercriminals appeared first on SecurityWeek.
Recognition for the industry-leading research our data science team generates to support cyber risk quantification software and services at RiskLens: Data Science Manager Justin Theriot has been nominated for an award as Cyber Risk Person of the ...
After a slow build over the past decade, new capabilities of artificial intelligence (AI) and chatbots are starting to make waves across a variety of industries. The Spring 2022 release of OpenAI’s DALL-E 2 image generator wowed users with its ...
Business email compromise (BEC) is a sophisticated form of cybercrime that involves the use of email to deceive and defraud businesses. Attackers impersonate a trusted individual or entity, such as a CEO, vendor, or supplier, in order to trick ...
Out-of-control devices run the gamut from known to unknown and benign to malicious, and where you draw the line is unique to your organization.
The post Reigning in ‘Out-of-Control’ Devices appeared first on SecurityWeek.
Today’s IT and security professionals operate in a world where everything is connected, but nothing is implicitly trusted.
The post The State of Machine Identity Management: More Machines, More Certificates … More Problems? appeared first on ...
Organizations are overwhelmed with devices and applications in their environment due to lack of management and control, and this expansion of the cloud-based attack surface threatens to overwhelm enterprise IT security. Findings from ...
Lawsuits filed against companies that have suffered a data breach are increasingly common, with action being taken even for incidents affecting less than 1,000 people.
The post Companies Increasingly Hit With Data Breach Lawsuits: Law Firm ...
CISA has opened proposed guidance for secure software development to public review and comment.
The post CISA Asks for Public Opinion on Secure Software Attestation appeared first on SecurityWeek.
The Iranian government has been using the BouldSpy Android malware to spy on minorities and traffickers.
The post ‘BouldSpy’ Android Malware Used in Iranian Government Surveillance Operations appeared first on SecurityWeek.
Strengthening operational technology security by merging compliance protocols with cybersecurity strategies Operational Technology (OT) security has become an essential component of modern industries to protect critical infrastructure and ...
Running a successful business requires effective and efficient processes to ensure that tasks are completed accurately and on time. As businesses grow, managing these processes can become increasingly complex, leading to a greater risk of errors ...
Managed API security services act as a seamless extension of your in-house security team, empowering it with focused skillsets and operational capabilities that can help you get a better understanding of the API attack landscape, and take the ...
Excessive privileges are a continuing headache for security professionals. As more organizations migrate assets to the cloud, users with excessive permissions can expand the blast radius of an attack, leaving organizations open to all sorts of ...
New trends appear every year as the food sector continues to develop. From plant-based diets to sustainable sourcing, consumers are increasingly aware of the impact of their food choices on the environment and their health. As we move into 2023, ...
In this episode we speak with Kai Roer, a renowned author, security culture coach, and CEO of Praxis Security Labs. Kai shares his career journey in cybersecurity and emphasizes the importance of building a strong security culture within ...
