Application Security News and Articles


Grip secures SaaS identities and SSPM for identity fabric

Grip is critical layer for securing today’s modern work, SaaS-driven enterprise; SSPM enables identity and SaaS protection for modern work and business-led IT The post Grip secures SaaS identities and SSPM for identity fabric appeared first on ...

USENIX Security ’22 – Moritz Schloegel, Tim Blazytko, Moritz Contag, Cornelius Aschermann, and Julius Basler, Thorsten Holz, Ali Abbasi – ‘Loki: Hardening Code Obfuscation Against Automated Attacks’

Our thanks to USENIX for publishing their Presenter’s outstanding USENIX Security ’22 Conference content on the organization’s’ YouTube channel. Permalink The post USENIX Security ’22 – Moritz Schloegel, Tim Blazytko, Moritz ...

Pre-Deepfake Campaign Targets Putin Critics

Russia is continuing its campaign of disinformation around the Ukraine war through advanced social engineering delivered by a threat group tracked as TA499. The post Pre-Deepfake Campaign Targets Putin Critics appeared first on SecurityWeek.

Stop DDoS Attacks From Hurting Your Business

Distributed denial of service (DDoS) attacks are a growing concern for businesses of all sizes, causing disruption to online operations and damaging reputations. In recent years, DDoS attacks have become more prevalent and sophisticated, making ...

Virtual Event Tomorrow: Ransomware Resilience & Recovery Summit

Register for SecurityWeek’s Ransomware Resilience & Recovery Summit, a virtual event designed to help businesses to plan, prepare, and recover from a ransomware incident. The post Virtual Event Tomorrow: Ransomware Resilience & ...

App sec is addicted to vulnerabilities: Why supply chain security requires evolution

As application security professionals and developers seek ways to both prevent new flaws and manage existing vulnerabilities in software, the problems of scale and limited time inevitably rear their heads. Whether it is rooting out ...

Fortinet Releases Advisory on Critical FortiOS Vulnerability

On March 7, 2023, Fortinet released 15 new PSIRT advisories regarding vulnerabilities in its products. Here’s what you need to know. What is the situation? Between all the advisories, there are one low, eight medium, five high and one ...

What the LastPass Hack Says About Modern Cybersecurity

Online password managers are meant to help users keep track of the long and complex... The post What the LastPass Hack Says About Modern Cybersecurity appeared first on Axiad. The post What the LastPass Hack Says About Modern Cybersecurity ...

Randall Munroe’s XKCD ‘Launch Window’

via the comic artistry and dry wit of Randall Munroe, resident at XKCD! Permalink The post Randall Munroe’s XKCD ‘Launch Window’ appeared first on Security Boulevard.

Do You Want to Know a Secret? Just Take a Look Inside Top Finance Apps

Financial apps have access to valuable and sensitive personal data, so you would think mobile app security would be top-of-mind for financial institutions. But is it?  The post Do You Want to Know a Secret? Just Take a Look Inside Top Finance ...

White House cyber strategy: A love/hate story

The post White House cyber strategy: A love/hate story appeared first on Security Boulevard.

BlackMamba: Using AI to Generate Polymorphic Malware

New Threats Emerging The introduction of ChatGPT last year marked the first time neural network code synthesis was made freely available to the masses. This powerful and versatile tool can be used for everything from answering simple questions to ...

OWASP API Security Top 10: Upcoming Changes You Need To Know About

Check out these changes coming to the OWASP API Security Top 10 list! The post OWASP API Security Top 10: Upcoming Changes You Need To Know About appeared first on Dana Epp's Blog. The post OWASP API Security Top 10: Upcoming Changes You Need To ...

KubeCrash Spring 2023 is Here! Learn From Crash Courses on Cloud Native

KubeCon EU is just around the corner, so KubeCrash, the Amsterdam warm-up event, is here too! This is our third time hosting KubeCrash, a KubeCon co-located event for “timezone-left-behinds.” I’m super excited about what we have in store ...

Aite-Novarica Names Radware’s Bot Manager Solution Best-In-Class

The Aite Matrix: Leading Bot Detection and Management Provders report shows Radware as the leader among the ten vendors Aite-Novarica evaluated. The post Aite-Novarica Names Radware’s Bot Manager Solution Best-In-Class appeared first on Radware ...

Bitwarden: The Curious (Use-)Case of Password Pilfering

While evaluating the behavior of Bitwarden, a popular password manager browser extension, Flashpoint’s Vulnerability Research team noticed that embedded iframes in a web page were handled in an atypical manner. The post Bitwarden: The Curious ...

USENIX Security ’22 – Seunghoon Woo, Hyunji Hong, Eunjin Choi, Heejo Lee – ‘MOVERY: A Precise Approach For Modified Vulnerable Code Clone Discovery From Modified Open-Source Software Components’

Our thanks to USENIX for publishing their Presenter’s outstanding USENIX Security ’22 Conference content on the organization’s’ YouTube channel. Permalink The post USENIX Security ’22 – Seunghoon Woo, Hyunji Hong, Eunjin ...

Women’s Day: Naomi Buckwalter & Megan Baker | Code Patrol podcast | Contrast Security

Happy International Women’s Day, happy Women’s History Month! The post Women’s Day: Naomi Buckwalter & Megan Baker | Code Patrol podcast | Contrast Security appeared first on Security Boulevard.

The Value of System Hardening

In a recent podcast interview with Hillarie McClure, Multimedia Director of Cybercrime Magazine, Robert E. Johnson III, Cimcor CEO/President, discusses the overall value that implementing system hardening paired with a configuration management ...

How to Secure Microsoft 365 in 2023

By a wide margin, Microsoft 365 is the world’s most popular productivity software with over 180 million users globally. Updating familiar applications such as Excel, Word and PowerPoint for the cloud computing era has enabled Microsoft to once ...