Application Security News and Articles
Between January 2021 and October 2022, the EU Agency for Cybersecurity (ENISA) analyzed and mapped the cyber threats faced by the transport sector, identifying prime threats, analyzing incidents, assessing threat actors, analyzing their ...
One of the key areas within the insider risk matrix is the role of the benevolent or malevolent employee. With the former, their actions are of good intent, though their execution and decision-making may be flawed and fraught with unintended ...
An average enterprise storage and backup device has 14 vulnerabilities, three of which are high or critical risk that could present a significant compromise if exploited, according to Continuity. The findings underscore a significant gap in the ...
Vumetric Cybersecurity has launched its Penetration Testing as-a-Service (PTaaS) platform, designed to simplify and modernize cybersecurity assessments for organizations of all sizes. The Vumetric PTaaS platform revolutionizes the penetration ...
Secureworks bolsters cyber resiliency with launch Of Security Posture Dashboard. Using the 600 billion security events Taegis analyzes daily, the Dashboard empowers customers to understand their cybersecurity posture and how resilient they would ...
Lightspin launched the Remediation Hub as part of its cloud-native application protection platform (CNAPP) solution. An evolution of Lightspin’s root cause analysis feature, the Remediation Hub provides users the ability to dynamically ...
Many companies struggle to implement and integrate a bunch of different solutions covering different parts of the IDV process. In fact, according to Regula’s survey, 40% of organizations cite this overly complex technical environment as the ...
Nebulon has unveiled two new zero-trust offerings: Two-Person Commit and Single Sign-on (SSO) that advance Nebulon’s security offering, which includes advanced authentication and authorization, always-on encryption, and 4-minute ransomware ...
Verosint and Ping Identity partnership enables mutual customers to analyze digital identities across devices at login to determine account fraud risk. Recognized customers are granted a frictionless transaction path, whereas suspicious users are ...
Veza announced the appointment of Jason Garoutte as its first Chief Marketing Officer. Garoutte is responsible for building and leading a world-class marketing organization that drives Veza’s continued growth and scale. Garoutte has two decades ...
Google says it has suspended the app for the Chinese e-commerce giant Pinduoduo after malware was found in versions of the app. The move comes just weeks after Chinese security researchers published an analysis suggesting the popular e-commerce ...
Discover key considerations to keep in mind when looking at fraud prevention platforms.
The post How to select the right fraud prevention platform for your business appeared first on Sift Blog.
The post How to select the right fraud prevention ...
SafeBreach coverage for US-CERT Alert (AA22-335A) - Cuba Ransomware
The post SafeBreach Coverage for Microsoft Outlook for Windows Vulnerability – CVE-2023-23397 appeared first on SafeBreach.
The post SafeBreach Coverage for Microsoft Outlook ...
Our thanks to USENIX for publishing their Presenter’s outstanding USENIX Security ’22 Conference content on the organization’s’ YouTube channel.
Permalink
The post USENIX Security ’22 – Sunil Manandhar, Kaushal Kafle, ...
Emotet, a notorious and dangerous malware strain, has re-emerged after a period of dormancy. Its new iteration exhibits enhanced capabilities, notably evading macro security features and employing a method of delivery made popular by the malware ...
Cable customers weren’t thrilled when they realized that Comcast would implement yet another price hike....
The post Xfinity Data Breach: How It Happened (and Are You Affected?) appeared first on Axiad.
The post Xfinity Data Breach: How It ...
Azure Identity Security Best Practices As a PKI and Identity provider we are held to a higher standard when it comes to Identity Security. In this blog we will walk you through how we follow Azure security best practices to secure our cloud only ...
APIs have been a linchpin as far as accelerating digital transformation — but they’ve also exponentially expanded the attack surface of modern business networks.
Related: Why ‘attack surface management’ has become crucial
The resultant ...
The post 2023 Pen Testing Report appeared first on Digital Defense.
The post 2023 Pen Testing Report appeared first on Security Boulevard.
The biggest takeaway is: MFA can prevent account takeovers where credentials are compromised. That's it.
Different forms of MFA exist, but in most cases enabling MFA is better than not enabling MFA - especially on important/crucial accounts.
From ...
