Application Security News and Articles


AUTHOR Q&A: China’s spy balloons reflect a cyber warfare strategy America must counter

The attack surface of company networks is as expansive and porous as ever. Related: Preparing for ‘quantum’ hacks That being so, a new book, Fixing American Cybersecurity, could be a long overdue stake in the ground. This is a … (more…) ...

The Role of GST Number Search and Verification API in GSTIN Authentication

Making sure you are collaborating with reputable and legal partners/merchants is essential for business owners. Verifying your potential merchants’ GST identification numbers (GSTINs) is a crucial step in the digital onboarding process. ...

The top security threats to GraphQL APIs and how to address them

Enterprises looking to modernize their APIs are increasingly switching from the REST architecture to the open-source data query and manipulation language GraphQL. While the transition makes sense – GraphQL is more flexible, scalable, and ...

Are your IoT devices at risk? Cybersecurity concerns for 2023

In this Help Net Security video, J.R. Cunningham, CSO at Nuspire, discusses IoT cybersecurity concerns for 2023. With homes becoming increasingly connected and reliant on smart technology, the potential for cybercriminals to exploit ...

Most vulnerabilities associated with ransomware are old

Researchers identified 56 new vulnerabilities associated with ransomware threats among a total of 344 threats identified in 2022 – marking a 19% increase year-over-year. Threat actors are actively searching the internet and deep and dark ...

How a hub and spoke model can future-proof your cloud deployment

Cloud adoption among organizations has increased dramatically over the past few years, both in the range of services used and the extent to which they are employed, according to Info-Tech Research Group. However, network builders tend to overlook ...

Resecurity warns about cyber-attacks on data center service providers

Resecurity warns about the increase of malicious cyber activity targeting data center service providers globally. According to the detailed report recently released by the California-based cybersecurity company, during September 2021, Resecurity ...

Why Your Privileged Access Management (PAM) Solution isn’t Enough for Database Security

Your organization’s data is at more risk than ever before, as proven by the staggering 422 million victims that were exposed in 1,802 data breaches … The post Why Your Privileged Access Management (PAM) Solution isn’t Enough for Database ...

Perimeter 81 and TD SYNNEX provide secure network access for the modern workforce

Mitigating persistent cyber threats has made network security mission critical for businesses of all sizes. The 2022 U.S. Cybersecurity Census Report found that the average business experiences 42 cyberattacks each year, amplifying the need for a ...

CloudCasa and Ondat bring bundled offering for Kubernetes storage and data protection

Catalogic Software has unveiled a new bundled offering of its native back-up-as-a-service platform CloudCasa and Ondat. This combined CloudCasa and Ondat offering provides customers with a unified solution to run their stateful applications on ...

API Security Requirements for PCI Secure Software Standard

With the increasing number of attacks on APIs, the PCI Security Standards Council (PCI SSC) is acting. In addition to the PCI DSS requirements and to assist businesses and help ensure their software, including APIs are not exploited, the PCI SSC ...

Automation Helps Address Vulnerability Management Amid a Cybersecurity Skills Gap

Automation is an important element amid an ongoing cybersecurity skills gap. Anyone who works in the cybersecurity field knows that there has been a skills shortage going on for years. And unfortunately, there are no signs that the gap between ...

How to Detect and Prevent Fintech Fraud

Fintechs and financial services businesses have become increasingly important in recent years. As consumers expect convenience, accessibility, and increased transparency with their financial transactions, the fintech industry has taken center ...

What Can Modern Smart Home Technology Teach Us About Industrial IoT Security?

3 min read IoT and IIoT devices make our lives easier, but ensuring their security is a challenge. Read on for best practices for securing the devices you depend on – at home and at work. The post What Can Modern Smart Home Technology Teach Us ...

Threat Actors Are Using Google Ads to Launch Phishing Attacks

Year after year, phishing tops the list of the leading causes of data breaches. Afterall, a threat actor’s job is made much easier if they can get an authorized user to visit a malicious website on their own accord. Once a user has accessed a ...

USENIX Security ’22 -Xuewei Feng, Qi Li, Kun Sun, Zhiyun Qian, Gang Zhao, Xiaohui Kuang, Chuanpu Fu, Ke Xu – ‘Off-Path Network Traffic Manipulation via Revitalized ICMP Redirect Attacks’

Our thanks to USENIX for publishing their Presenter’s outstanding USENIX Security ’22 Conference content on the organization’s’ YouTube channel. Permalink The post USENIX Security ’22 -Xuewei Feng, Qi Li, Kun Sun, Zhiyun Qian, ...

VMware Plugs Critical Carbon Black App Control Flaw

VMware issues a critical fix for a vulnerability that allows hacker to gain full access to the underlying server operating system. The post VMware Plugs Critical Carbon Black App Control Flaw appeared first on SecurityWeek.

Imperva releases its Global DDoS Threat Landscape Report 2023

The 2023 Imperva Global DDoS Threat Landscape Report reviews DDoS attack activity throughout 2022, provides insights into the year’s most noteworthy DDoS events, and offers recommendations for the year ahead.  While the report focuses mainly ...

Nuspire Q4 2022 and Year in Review Threat Report: Cyber Threat Numbers Make History

Nuspire’s latest threat report, which provides an analysis on the cyberthreat landscape for both Q4 and FY 2022, revealed what many have come to believe: 2022 was the most active year in history for cyber threats. Nuspire’s threat ...

Randall Munroe’s XKCD ‘Square Packing’

via the comic artistry and dry wit of Randall Munroe, resident at XKCD! Permalink The post Randall Munroe’s XKCD ‘Square Packing’ appeared first on Security Boulevard.