Application Security News and Articles


Where’s Cybersecurity Insurance Going?

Cybersecurity insurance has long existed and rescued businesses from the consequences of online risks and attacks. While it becomes more of a necessity for businesses, the rapid increase of cyberattacks and ransomware gradually spirals into an ...

How Does a Data Breach Take Place in an Organization?

Introduction Recent incidents of data breaches have become a great concern for organizations. Regardless of the organization’s size, threat actors are targeting every business type. Threat actors have also started targeting medical ...

GUEST ESSAY: Testing principles to mitigate real-world risks to ‘SASE’ and ‘Zero Trust’ systems

A new generation of security frameworks are gaining traction that are much better aligned to today’s cloud-centric, work-from-anywhere world. Related: The importance of ‘attack surface management’ I’m referring specifically to Secure ...

How to safely file your taxes online

As tax season approaches, many people are starting to think about how they will file their taxes. If you're like most people, you're probably considering filing your taxes online. It's convenient, fast, and can save you a lot of time and hassle. ...

Streamlining User Onboarding: Voter ID Verification API for simplified Identity Verification

The Election Commission of India issues the Indian Voter ID Card (officially known as the Elector’s Photo Identity Card (EPIC)) to adult Indian citizens who have reached the age of 18. It is primarily used for identity proof of Indian citizens ...

It only takes one over-privileged identity to do major damage to a cloud

While moving to the cloud increases efficiency and business agility, security strategies haven’t been adapted to account for this shift and traditional tools can’t effectively manage the unique associated risks. CISOs that ignore the risks ...

EliteCISOs webinar Q&A

On February 23, 2023 Shira Shamban and Vandana Verma gave a session about popular challenges in cloud security, and successful mitigation strategies. If you’ve missed the session and wish to watch it, visit EliteCISO’s Youtube channel here. ...

Expert strategies for defending against multilingual email-based attacks

BEC (Business Email Compromise) attacks have become increasingly prevalent in recent years, with cybercriminals using a variety of tactics to gain access to sensitive information and steal money from businesses. While many people may assume that ...

Security teams have no control over risky SaaS-to-SaaS connections

Employees are providing hundreds to thousands of third-party apps with access to the two most dominant workspaces, Microsoft 365 and Google Workspace, according to Adaptive Shield. With no oversight or control from security teams, companies have ...

10 US states that suffered the most devastating data breaches in 2022

Cyber attack risks faced by businesses across states and reported data breaches are relative to the respective state governments’ cybersecurity investment, according to Network Assured. Study methodology Network Assured compared data from ...

White House: No More TikTok on Gov’t Devices Within 30 Days

The White House is giving all federal agencies 30 days to wipe TikTok off all government devices. The post White House: No More TikTok on Gov’t Devices Within 30 Days appeared first on SecurityWeek.

LiveRamp enhances identity resolution services on Snowflake

LiveRamp has expanded its partnership with Snowflake to upgrade its product capabilities built natively on Snowflake and increase data connectivity for next-generation, post-cookie marketing in the cloud. By building LiveRamp’s data activation ...

Red Hat and Samsung partner on new 5G RAN solution

Red Hat extend partnership with Samsung to introduce a virtualized radio access network (vRAN) solution that offers advanced integration and automation features. The technology will be designed to help service providers better manage networks at ...

Vouched raises $6.3 million to enhance its platform

Vouched announced $6.3 million financing led by BHG VC and SpringRock Ventures, as well as prior investors Darrell Cavens and Mark Vadon. Vouched’s expansion plans build upon the company’s rapid growth over the past year. The company ...

Making the Right Investments to Combat the Cybersecurity Labor Shortage

Modernizing PKI can provide the transformative element teams need to stay vigilant and effective throughout the cybersecurity labor shortage. The post Making the Right Investments to Combat the Cybersecurity Labor Shortage appeared first on ...

New Sensor Dashboard and Rack PDU Outlet Control

Product Update: Version 3.11 Our latest product update is a big one! we've introduced a new add-on feature called Control that includes Outlet Control, which lets you power on, off, and cycle your rack PDUs remotely through the platform. We've ...

LastPass Says DevOps Engineer Home Computer Hacked

LastPass DevOp engineer's home computer hacked and implanted with keylogging malware as part of a sustained cyberattack that exfiltrated corporate data from the cloud storage resources. The post LastPass Says DevOps Engineer Home Computer Hacked ...

“Bizarre” DNS Hacks For Fun And, Um…, Fun

I’ve been (slowly) making my way through FOSDEM `23 presentations and caught up to Peter Lowe‘s “Bizarre and Unusual Uses of DNS • Rule 53: If you can think of it, someone’s done it in the DNS” talk. DNS oddities are items I collect ...

What is a Botnet Attack?

Definition of a botnet attack Bots have redefined the online experience for both enterprises and individual consumers alike. Bots, both good and malicious, now comprise a significant portion of internet traffic and are used to automate processes, ...

The Inaugural Hacker’s Yearbook

Gain a better understanding of the key security trends, cyber breaches, and cyberattacks of 2022 to better prepare for the new challenges of 2023. The post The Inaugural Hacker’s Yearbook appeared first on SafeBreach. The post The Inaugural ...