Application Security News and Articles


Getting Ahead of the Curve with Automotive Security Compliance

In the ever-evolving world of smart cars, cybersecurity has emerged as a major priority in the automotive industry. Automotive manufacturers are facing a market that demands smart cars meet more stringent automotive security compliance ...

Arkose Labs: ROI and Cybercrime

The cybersecurity imperative has never been more relevant. New zero-day exploits, criminal organizations, bot attacks, and data breaches are accelerating and are in the headlines every day. At Arkose Labs, we are here to mitigate those threats, ...

Goodbye Passwords. Hello, Passkeys!

Anyone remember the last time you used a physical key to unlock and start your... The post Goodbye Passwords. Hello, Passkeys! appeared first on Entrust Blog. The post Goodbye Passwords. Hello, Passkeys! appeared first on Security Boulevard.

Seceon’s aiXDR: Automating Cybersecurity Threat Detection in 2023

Seceon’s comprehensive platform includes more than 15 tools like AI, ML, Vulnerability Assessment, SIEM, SOAR, UEBA, NBAD, NTA, EDR, TI, but our focus for today is an area that frequently comes up in conversation with customers and partners ...

USENIX Security ’22 – Chengbin Pang, Tiantai Zhang, Ruotong Yu, Bing Mao, Jun Xu – ‘Ground Truth For Binary Disassembly Is Not Easy’

Our thanks to USENIX for publishing their Presenter’s outstanding USENIX Security ’22 Conference content on the organization’s’ YouTube channel. Permalink The post USENIX Security ’22 – Chengbin Pang, Tiantai Zhang, Ruotong ...

TAG Cyber: Content Disarm and Reconstruction – What It Is and Why It Should Be in Your Toolbox 

By John Masserini, Senior Research Analyst, TAG Cyber   As more and more enterprises move towards modernizing their infrastructures and solidifying their new, post-pandemic business models, unexpected attack vectors have emerged. After decades ...

Comparing SBOM Standards: SPDX vs. CycloneDX vs. SWID

  The post Comparing SBOM Standards: SPDX vs. CycloneDX vs. SWID appeared first on Security Boulevard.

The Week in Security: Russian hackers targeted U.S. gas and electric, malicious PyPI packages show prowess

Welcome to the latest edition of The Week in Security, which brings you the newest headlines from both the world and our team across the full stack of security: application security, cybersecurity, and beyond. This week: Russian-linked hackers ...

Tags and Labels – Make Sense of Multi-Cloud, Hybrid, and On-Premises Networks in an Atomized Network World.

Tags and labels are essential for providing visibility, context, automation, and operational governance into modern Atomized Networks, which are made up of multi-cloud, hybrid, and on-premises networks. The post Tags and Labels – Make Sense of ...

Randall Munroe’s XKCD ‘Weather Station’

via the comic artistry and dry wit of Randall Munroe, resident at XKCD! Permalink The post Randall Munroe’s XKCD ‘Weather Station’ appeared first on Security Boulevard.

Taylor Swift ticket scams: How to stay safe

You’re a confirmed Swiftie: You love Taylor Swift and can't wait to see her perform live. With each new tour, you're eager to get your hands on tickets to experience the magic of seeing Miss Americana live. But Swifties aren’t the only ones ...

Microsoft February Patch Tuesday Addresses 78 Vulnerabilities, Including 3 Known Exploits

On February 14th 2023, Microsoft released their February Patch Tuesday and revealed 78 vulnerabilities fixes, including three known exploited vulnerabilities in the wild. The vulnerabilities affect popular platforms such as Visual Studio, 3D ...

Published XIoT Vulnerabilities Trend Down, but Vigilance Must Remain High: Report

While the total number of new XIoT vulnerabilities is reducing, the difficulty in securing these devices remains high – especially in OT situations. The post Published XIoT Vulnerabilities Trend Down, but Vigilance Must Remain High: Report ...

USENIX Security ’22 – ‘Back-Propagating System Dependency Impact For Attack Investigation’

Complete Title: 'USENIX Security '22 - Pengcheng Fang, Peng Gao, Changlin Liu, Erman Ayday, Kangkook Jee, Yanfang (Fanny) Ye, Zhuotao Liu, Xusheng Xiao - ‘Back-Propagating System Dependency Impact For Attack Investigation’ Our thanks to ...

Chris Inglis Steps Down as US National Cyber Director

The former NSA deputy director Chris Inglis was picked 17 months ago to be President Joe Biden’s top advisor on cybersecurity issues. The post Chris Inglis Steps Down as US National Cyber Director appeared first on SecurityWeek.

Convergence of various kinds of proxies for SASE

Why Proxies in SASE? Gone are the days when the packet level security was considered sufficient. Due to the sophistication of attacks, it is becoming imperative to do deep content inspection for various kinds of protections. Identity aware access ...

Enterprise Ransomware Protection: Essential Tips and Tools

Does your enterprise have a spare half million dollars to spend recovering from a ransomware attack? Maybe, but I’m sure your board would prefer to spend that cash elsewhere.  The average cost of a ransomware breach in 2022 is around half a ...

Privacy-by-Design Becomes an ISO Standard: a New Driver for Data-Centric Security

Consumer trust in online services is a growing preoccupation of today’s boardrooms. That’s because customers are increasingly prepared to walk if they don’t like what they see. In fact, 71% of consumers told PwC last year that they’re ...

Regarding Open Source Security Vulnerabilities: Focus on Changing Human Behaviors

Like all humans, coders aren’t perfect. They’re vulnerable, which means the software they create is... The post Regarding Open Source Security Vulnerabilities: Focus on Changing Human Behaviors appeared first on Entrust Blog. The post ...

Firefox Updates Patch 10 High-Severity Vulnerabilities

Mozilla releases Firefox 110 and Firefox ESR 102.8 with patches for 10 high-severity vulnerabilities. The post Firefox Updates Patch 10 High-Severity Vulnerabilities appeared first on SecurityWeek.