Application Security News and Articles


Privacera integrates with Databricks Unity Catalog

Privacera and Databricks users can now facilitate data discovery and consistent data access across the Databricks Lakehouse Platform, including seamless migration of existing Privacera policies. With this latest integration, Privacera increases ...

Metomic raises $20 millions to help security teams control sensitive data

Metomic has raised a $20 million Series A funding round. The round is led by Evolution Equity Partners with participation from Resonance and Connect Ventures. The investment will be used for U.S. expansion efforts and research and development ...

Software Factories and Bills of Materials

Other manufacturing factories require bills of materials, so too, do software development factories, says Michel Genard, acting CPO at Lynx Software Technologies. The post Software Factories and Bills of Materials appeared first on Security ...

Snapchat Replaced a Leading Bot Mitigation Solution to Reduce Fake Accounts with Arkose Labs

Social media apps are more popular than ever, which puts social media platforms squarely in the crosshairs of cybercriminals who will commit fraud to steal directly from the enterprise. These attacks can harm a company’s reputation and pose a ...

USENIX Security ’22 – ‘Who Are You (I Really Wanna Know)? Detecting Audio DeepFakes Through Vocal Tract Reconstruction’

Complete Title: 'USENIX Security '22 - Logan Blue, Kevin Warren, Hadi Abdullah, Cassidy Gibson, Luis Vargas, Jessica O'Dell, Kevin Butler, Patrick Traynor - ‘Who Are You (I Really Wanna Know)? Detecting Audio DeepFakes Through Vocal Tract ...

Cybersecurity Fundamentals Training as E-Learning

We know that security teams need to focus on confidently and efficiently defending against cyberattacks. While Analyst training is crucial to building a high-performing security team, finding the time to attend hours of training is easier said ...

What is Website Spoofing?

To protect against website spoofing, it is important to regularly monitor your website and ensure that it is properly secured against attacks. Learn how to protect your organization. The post What is Website Spoofing? appeared first on Security ...

Why API Security Is Everywhere (Except Where You Need It)

Unfortunately, many devs and ops engineers don't view API security as a priority - and that's a mistake. API security is application security. In this blog post, we'll explore why API security is so important, and how you can make sure you're ...

Netography Detection Model Release – February 23, 2023

The Netography Threat Research Team has released its latest detections which include dashboard widgets and visibility on the use of social networks, torrents, and file sharing on Atomized Networks. The post Netography Detection Model Release – ...

Randall Munroe’s XKCD ‘Wish Interpretation’

via the comic artistry and dry wit of Randall Munroe, resident at XKCD! Permalink The post Randall Munroe’s XKCD ‘Wish Interpretation’ appeared first on Security Boulevard.

OECD.AI Tools to Measure and Remove Bias

Some things I’ve been working on have been posted into the OECD.AI Policy Observatory. Go have a look at their growing catalog of innovation, such as this query: Technical Tools to Remove Bias. The post OECD.AI Tools to Measure and Remove Bias ...

Secrets Exposed: Why modern development, open source repositories spill secrets en masse

For software development teams, the warning just after the New Year from DevOps platform vendor CircleCI to immediately rotate any secrets they had stored on the company’s continuous integration platform was worse than a nightmare. It was more ...

Exploit Available For Critical Vulnerability In Fortinet FortiNAC Systems

Customers using Flashpoint’s VulnDB solution can track any developments for this vulnerability via VulnDB ID 313000. The post Exploit Available For Critical Vulnerability In Fortinet FortiNAC Systems appeared first on Flashpoint. The post ...

Lookout for W2 Phishing Attacks During Tax Season

Tax season is a particularly busy time of year for folks from the payroll department and the finance team. They are preparing to deliver statements that must be correct for their employees to be able to pay their taxes. They… The post Lookout ...

ChatGPT: Woodrow Wilson Used Federal Troops to Execute Black Americans Trying to Unionize

I’ve been noticing that slight perturbations in a query to ChatGPT gives dramatically different results. Clearly their curation systems have vulnerabilities open to exploitation. Here’s an example: “did woodrow wilson’s federal troops ...

The Top 5 Ways to Secure Your Snowflake Environment

The world is increasingly built on data. An estimated 120 zettabytes will be created, captured, copied, and consumed this year alone. Yet businesses looking to harness that data for improved decision making traditionally had a problem. Legacy ...

USENIX Security ’22 – ‘Seeing is Living? Rethinking the Security of Facial Liveness Verification in the Deepfake Era’

Complete Title: 'USENIX Security '22 - Changjiang Li, Li Wang, Shouling Ji, Xuhong Zhang, Zhaohan Xi, Shanqing Guo, Ting Wang - Seeing is Living? Rethinking the Security of Facial Liveness Verification in the Deepfake Era’ Our thanks to USENIX ...

Users looking for ChatGPT apps get malware instead

The massive popularity of OpenAI’s chatbot ChatGPT has not gone unnoticed by cyber criminals: they are exploiting the public’s eagerness to experiment with it to trick users into downloading Windows and Android malware and visit ...

Ransomware is Not Going Away — Here’s How to Stay Protected

When pressure from law enforcement led to the disbandment of several high-profile ransomware gangs during 2021 and 2022, analysts and companies alike wondered what this meant for the threat of ransomware. Some speculated that these attacks would ...

Do Hardened Systems Need FIM?

In a recent podcast interview with Hillarie McClure, Multimedia Director of Cybercrime Magazine, Robert E. Johnson III, Cimcor CEO/President, addresses whether it is necessary for already hardened systems to utilize file integrity monitoring ...