Application Security News and Articles


Meet an Open Source Developer – A.J. Brown

  The post Meet an Open Source Developer – A.J. Brown appeared first on Security Boulevard.

US Sanctions Several Entities Aiding Russia’s Cyber Operations

US Department of Treasury has announced a fresh set of sanctions against entities helping Russia in the war against Ukraine. The post US Sanctions Several Entities Aiding Russia’s Cyber Operations appeared first on SecurityWeek.

‘PureCrypter’ Downloader Used to Deliver Malware to Governments

Threat actor uses the PureCrypter downloader to deliver malware to government entities in Asia-Pacific and North America. The post ‘PureCrypter’ Downloader Used to Deliver Malware to Governments appeared first on SecurityWeek.

Supply Chain Dependency: What Your GitHub Connections May Trigger

The writing is on the walls, and it’s hard to avoid after the significant spike in attacks against GitHub repositories. The recent CircleCI breach, in which customers’ secrets and encryption keys were stolen, make it very clear that attackers ...

QNAP starts bug bounty program with rewards up to $20,000

QNAP Systems, the Taiwanese manufacturer of popular NAS and other on-premise storage, smart networking and video devices, has launched a bug bounty program. QNAP’s NAS devices, in particular, have been getting hit in the last few years by ...

Ransomware Attack Brings Dole Operations to a Temporary Halt

At a time when companies are plagued by supply chain issues, inflation is skyrocketing and cyberattacks proliferate, Dole PLC recently found itself the victim of a ransomware attack that temporarily shuttered some of its North American ...

Microsoft Exchange admins advised to expand antivirus scanning

After having stressed the importance of keeping Exchange servers updated last month, Microsoft is advising administrators to widen the scope of antivirus scanning on those servers. Microsoft Exchange servers in attackers’ crosshairs Cyber ...

Cloud Security Firm Wiz Raises $300 Million at $10 Billion Valuation

Cloud security company Wiz has raised $300 million in a Series D funding round that brings the total raised by the company to $900 million. The post Cloud Security Firm Wiz Raises $300 Million at $10 Billion Valuation appeared first on SecurityWeek.

Banning TikTok

Congress is currently debating bills that would ban TikTok in the United States. We are here as technologists to tell you that this is a terrible idea and the side effects would be intolerable. Details matter. There are several ways Congress ...

QNAP Offering $20,000 Rewards via New Bug Bounty Program

New QNAP Systems bug bounty program covers vulnerabilities in applications, cloud services, and operating systems. The post QNAP Offering $20,000 Rewards via New Bug Bounty Program appeared first on SecurityWeek.

AWS EC2 IMDS – What You Need to Know

Read this review of IMDS, an important AWS EC2 service component, to understand its two versions and improve your AWS security The post AWS EC2 IMDS – What You Need to Know appeared first on Ermetic. The post AWS EC2 IMDS – What You Need to ...

Media Giant News Corp Discloses New Details of Data Breach

News Corp says a threat group, previously linked to the Chinese government, had access to its systems for two years before the breach was discovered. The post Media Giant News Corp Discloses New Details of Data Breach appeared first on SecurityWeek.

Resecurity identified the investment scam network Digital Smoke

Resecurity identified one of the largest investment fraud networks by size and volume of operations created to defraud Internet users from Australia, Canada, China, Colombia, European Union, India, Singapore, Malaysia, United Arab Emirates, Saudi ...

How to Prepare for a Data Breach before it Happens

Preparation is key in preventing the worst outcomes from a data breach, so it is important to have a plan in place ahead of time. Here are some steps you can take to prepare for a potential data breach: Assess […] The post How to Prepare for a ...

FTC reveals alarming increase in scam activity, costing consumers billions

Newly released Federal Trade Commission (FTC) data shows that consumers reported losing nearly $8.8 billion to fraud in 2022, an increase of more than 30 percent over the previous year. Losing money to investment and imposter scams Consumers ...

Palo Alto Networks Unveils Zero Trust OT Security Solution

Palo Alto Networks introduces a new OT security solution for industrial organizations that provides visibility, zero trust and simplified operations. The post Palo Alto Networks Unveils Zero Trust OT Security Solution appeared first on SecurityWeek.

5 Application Security Challenges for Enterprises, Solved

Read this blog post to find out the meaning of enterprise application security, the various challenges IT teams face trying to ensure it, and lasting solutions. The post 5 Application Security Challenges for Enterprises, Solved appeared first on ...

Security Updates – January 2023

Check out the latest security updates made to the GuardRails platform as of January 2023 per coding language: JavaScript, Java, C, Python, and Go. The post Security Updates – January 2023 appeared first on GuardRails. The post Security Updates ...

GUEST ESSAY: The case for complying with ISO 27001 — the gold standard of security frameworks

Of the numerous security frameworks available to help companies protect against cyber-threats, many consider ISO 27001 to be the gold standard. Related: The demand for ‘digital trust’ Organizations rely on ISO 27001 to guide risk management ...

Palo Alto Networks Unfurls OT Security Service

At the Mobile World Congress event, Palo Alto Networks today launched a service for securing operation technology (OT) assets that is based on the same core technologies it relies on to secure IT environments. Xu Zou, vice president for network ...