Application Security News and Articles
If you’re in the enterprise tech world, you know that prediction season is in full swing. The time is now for taking stock of the year past and looking ahead to what will impact business, innovation and how we work for the next 365 days. Is it ...

Bridging the divide between developers and security can create a culture change organically.

The latest strain of SQL injection attacks can bypass web application firewalls to strike at online apps and websites. Here's how your organization can protect itself.
Members of DataDome's DE&I Women Empowerment Pod talk career development and advocating for yourself in terms of growth opportunities.
The post Spotlight: The Voices of Women at DataDome on Leadership appeared first on Security Boulevard.
We’ve been hearing more often than ever before, questions about Security Orchestration & Automated Response (SOAR) or simply “auto remediation,” which is the ability to automatically execute actions in response to detected security ...
As the tax season approaches, it's important to be aware of the potential for tax-related identity theft and scams. Unfortunately, these types of crimes are all too common, with scammers using various methods to steal personal information and ...
Series A funding brings the total amount raised by cybersecurity training company to $15 million.
The post Security Awareness Training Startup Riot Raises $12 Million appeared first on SecurityWeek.
In almost any type of warfare, reconnaissance is a much-needed first step. This certainly holds true for cyberwarfare. The steps are frequently portrayed as progressing from left to right. Two examples that describe the tactics attackers employ ...
A newly identified threat actor tracked as NewsPenguin has been targeting military organizations in Pakistan with sophisticated malware.
The post Military Organizations in Pakistan Targeted With Sophisticated Espionage Tool appeared first on ...
Patch Tuesday falls on Valentine’s Day this year but will it be a special date? While there have been ongoing cyber-attacks of all kinds, it has been relatively quiet on the release of new patches from Microsoft. Expect that trend to continue ...
The US and South Korea have issued a joint advisory on ransomware attacks on critical infrastructure funding North Korea’s malicious cyber activities.
The post US, South Korea: Ransomware Attacks Fund North Korea’s Cyber Operations ...
The exploitation of a GoAnywhere MFT zero-day vulnerability has been linked to a cybercrime group and ransomware attacks.
The post GoAnywhere MFT Zero-Day Exploitation Linked to Ransomware Attacks appeared first on SecurityWeek.
US and South Korean agencies have issued a joint cybersecurity advisory describing the tactics, techniques and procedures used by North Korean hackers to deploy “state-sponsored” ransomware on hospitals and other organizations that ...
Listen now (49 min) | With special guests Michael Loewy, Co-Founder of Tide Foundation, and Andrew Abel, our resident Zero Trust expert
The post Adopting Zero Trust: Zero Knowledge Authority appeared first on Security Boulevard.
A Black Duck Audit provides a complete picture of the software risks in your acquisition target’s software or your own.
The post Navigating software due diligence with a Black Duck Audit appeared first on Security Boulevard.
What are the key things businesses need to know about ransomware removal and recovery?
The post Malvertising: What is it and How Can it Lead to a Ransomware Attack? appeared first on Security Boulevard.
Reddit says its systems were hacked following a sophisticated phishing attack aimed at employees.
The post Documents, Code, Business Systems Accessed in Reddit Hack appeared first on SecurityWeek.
The tax code isn’t software. It doesn’t run on a computer. But it’s still code. It’s a series of algorithms that takes an input—financial information for the year—and produces an output: the amount of tax owed. It’s incredibly ...
Insight #1
"
The recent State of the Union address by President Joe Biden was very light on anything cyber security related. This was a prime opportunity to make sure everyone knows how important the new government cyber security ...
Popular social news website and forum Reddit has been breached (again) and the attacker “gained access to some internal docs, code, as well as some internal dashboards and business systems,” but apparently not to primary production ...