Application Security News and Articles
Latitude Financial Services says the personal information of 300,000 customers was stolen in a cyberattack.
The post Latitude Financial Services Data Breach Impacts 300,000 Customers appeared first on SecurityWeek.
Our thanks to USENIX for publishing their Presenter’s outstanding USENIX Security ’22 Conference content on the organization’s’ YouTube channel.
Permalink
The post USENIX Security ’22 – Olga Gkountouna, Katerina Doka, ...
A criminal complaint was unsealed today in federal court in Brooklyn charging Sagar Steven Singh and Nicholas Ceraolo with wire fraud and conspiracy to commit computer intrusions. The charges stem from Singh’s and Ceraolo’s efforts to ...
Three US government agencies have issued a joint warning to organizations about LockBit 3.0 ransomware attacks.
The post US Government Warns Organizations of LockBit 3.0 Ransomware Attacks appeared first on SecurityWeek.
Securing Kubernetes workloads is a critical aspect of increasing your overall cluster security. The goal is to ensure that your containers are running with minimal privileges — just enough that they can take the actions necessary to function ...
The recently identified Trigona ransomware has been highly active, targeting tens of organizations globally.
The post New ‘Trigona’ Ransomware Targets US, Europe, Australia appeared first on SecurityWeek.
Your organization may be prepared for an attack. You may have all the recommended security controls and your employees may be well-trained when it comes to avoiding social engineering attacks. You cannot truly be prepared, however, until you test ...
Unlock the power of Cybersecurity Mesh Architecture (CSMA) to enhance SaaS security. Discover how it can improve compliance and protect your organization.
The post Using a Cybersecurity Mesh Architecture (CSMA) for SaaS Secu appeared first on ...
Microsoft March “Patch Tuesday” Addresses 86 Security Vulnerabilities Including 2 Known Exploited Vulnerabilities. On March 14th, 2023, Microsoft released their March Patch Tuesday security update, and revealed 80 vulnerability fixes, ...
Today, an organization’s brand and reputation are intrinsically tied to its data security and privacy protections. Years ago, we couldn’t foresee the potential impact of digital technology innovations on brand stability. Network ...
Several vulnerabilities in Samsung’s Exynos chipsets may allow attackers to remotely compromise specific Samsung Galaxy, Vivo and Google Pixel mobile phones with no user interaction. “With limited additional research and development, we ...
If a new survey from API and application protection vendor ThreatX is accurate, a majority of U.S. consumers are less likely to work with a company following a data breach. At least, they claim that they are. The ThreatX survey highlighted ...
A newly identified threat actor named YoroTrooper is targeting organizations in Europe and the CIS region for espionage and data theft.
The post New Espionage Group ‘YoroTrooper’ Targeting Entities in European, CIS Countries appeared ...
Insight #1
"Malicious actors are always looking to take advantage of any opportunity. The recent bank runs and closures are no different. Remain vigilant in your phishing prevention mechanisms.
Insight #2
"GitHub is ...
Mandiant links exploitation of the Fortinet zero-day CVE-2022-41328, exploited in government attacks, to a Chinese cyberespionage group.
The post Exploitation of Recent Fortinet Zero-Day Linked to Chinese Cyberspies appeared first on SecurityWeek.
Here are the first things that come to mind when many people think of a DDoS attack: Unsophisticated, the oldest trick in the book, not harmful, “I am not at risk”, and on and on. I am here to tell you it is all false. Our current DDoS threat ...
After news broke late last week about Silicon Valley Bank’s bank run and collapse, security researchers started warning SVB account holders about incoming SVB-related scams and phishing attempts. Another reminder: just because caller ID ...
Cloud environments provide many benefits, primarily involving their ease of scalability and resilience. Those qualities exist because of automation and the easy and straightforward way to leverage that to enhance a cloud environment. While that ...
In today’s digital age, identity verification has become increasingly crucial. With the rise of online fraud and identity theft, it’s essential to confirm someone’s identity before granting access to sensitive information or services. In ...
Here’s a look at the most interesting products from the past week, featuring releases from Atakama, Elevate Security, Hornetsecurity, HYPR, and ReversingLabs. Hornetsecurity VM Backup V9 protects users against ransomware threats VM Backup V9 ...
