Application Security News and Articles
Cisco is working on a patch for an XSS vulnerability found in Prime Collaboration Deployment by a pentester from NATO’s Cyber Security Centre (NCSC).
The post Cisco Working on Patch for Vulnerability Reported by NATO Pentester appeared first on ...
The post Wicked Good Development Episode 32: Java Queens at Devnexus 2023 appeared first on Security Boulevard.
Ransomware actors continue to focus their attacks on the manufacturing sector, and LockBit remains the most prolific threat group, according to the results of the GuidePoint Research and Intelligence Team’s (GRIT) Q1 2023 ransomware report. The ...
At the RSA Cybersecurity 2023 conference, Flashpoint this week launched a cybersecurity intelligence platform that promises to streamline workflows by providing a unified real-time view of the relevant data and information pertaining to a ...
FDA and CISA notify healthcare providers about a component used by several Illumina medical devices being affected by serious vulnerabilities that can allow remote hacking.
The post FDA, CISA: Illumina Medical Devices Vulnerable to Remote Hacking ...
The Commission adopted the first designation decisions under the Digital Services Act (DSA), designating 17 Very Large Online Platforms (VLOPs) and 2 Very Large Online Search Engines (VLOSEs) that reach at least 45 million monthly active users. ...
Guess who's been busy setting them straight in cyberspace? Well that would be unfortunately throughout 2008–2013 when I was most active online making the headlines at unknown places online making my day and inspiring me to track down the ...
While digging into my old threat intelligence research archive I found the following which I decided to share with everyone.
Happy "takes you back doesn't it" time and OSINT and threat intelligence for historical cross-checking and connecting the ...
A newly identified variant of the RTM Locker ransomware is targeting Linux, NAS, and ESXi hosts.
The post RTM Locker Ransomware Variant Targeting ESXi Servers appeared first on SecurityWeek.
Stay informed about AppSec trends in healthcare. Learn about the latest trends to safeguard your organization's data, systems, and patients
The post Protecting Patient Privacy: Top 5 AppSec Trends in Healthcare for 2023 appeared first on ...
In December 2022 I stumbled upon an interesting YouTube comment-based campaign, which promoted a shady camgirl / porn website through a clever use of YouTube features. I screengrabbed some video evidence and took a quick look at the campaign, but ...
Software due diligence is crucial in M&A, but to approach it strategically you must understand its key considerations and risks.
The post Software due diligence in M&A: Key considerations and risks appeared first on Security Boulevard.
SecurityWeek is providing a summary of ICS/OT cybersecurity announcements made at RSA Conference 2023, including talks, products, and new initiatives.
The post RSA Conference 2023 – ICS/OT Cybersecurity Roundup appeared first on SecurityWeek.
A critical-severity vulnerability in Zyxel’s ATP, USG FLEX, VPN, and ZyWALL/USG firewalls can be exploited remotely for OS command execution.
The post Critical Vulnerability in Zyxel Firewalls Leads to Command Execution appeared first on ...
The OWASP API Top 10 2023 list has quite a few changes from the 2019 Top 10 API security risks. Here is updated OWASP API Top 10 2023 RC List.
The post What’s New in OWASP API Top 10 2023RC: The Latest Changes and Enhancements appeared first on ...
Introduction In today’s digital landscape, security is more important than ever. As organizations continue to rely on technology to conduct business operations and handle sensitive information, the need for strong security controls and ...
Generative AI has captured the imagination of millions worldwide, largely driven by the recent success of ChatGPT, the text-generation chatbot. Our new research showed that globally, 67% of consumers have heard of generative AI technologies, and ...
Here’s a look at the most interesting products from the past week, featuring releases from Abnormal Security, Arista Networks, Cyera, Eclypsium, Halo Security, Immuta, ManageEngine, and Traceable AI. Abnormal Security expands its platform and ...
Password resets could unnecessarily cost FTSE 100 businesses over $156 million every month, according to MyCena Security Solutions. This raises the question of the necessity of password resets, at a time when organisations must identify cost ...
Over the last two years, respondents reported a continued reliance on the least secure forms of authentication, including traditional usernames and passwords and one-time passwords (OTPs), according to Yubico. Not all MFA is equal The results are ...
