software security Archives - Cyber Security Minute

Biden Administration Bans Kaspersky Antivirus Software

Issued by: DataBreach Today

The U.S. federal government is banning Russian cybersecurity firm Kaspersky Labs from selling antivirus software in the United States, officials announced Thursday, citing significant national security risks. Department of Commerce officials urged current Kaspersky customers to “immediately find alternatives” after an investigation determined that Russian state hackers could turn the cybersecurity software against their users….

Software Security

Tips for Securing the Software Supply Chain

Issued by: Dark Reading

“Software supply chain attacks are at the top of all CISOs’ minds,” says ReliaQuest CISO Jeff Music. Music attributes the popularity of software supply chain attacks to the fact that these attacks are relatively easy to conduct and have a significant payoff for the attacker. “This is especially the case if the vulnerable hardware or…

Will Cybersecurity Remain Recession-Proof in 2023?

Issued by: Dark Reading

We’ve recently seen substantial layoffs across the tech sector, to the tune of around 140,000 redundancies made by big names such as Amazon, Salesforce, Microsoft, and Tesla. As the recession bites, falling stock prices and further contraction in the market, together with merger and acquisition activity, are expected to force businesses to reduce head count…

Software Security

U.S. Government, Tech Giants Discuss Open Source Software Security

Issued by: Security Week

The recent disclosure and exploitation of vulnerabilities affecting the widely used Log4j logging utility have once again highlighted the importance of open source security and software supply chain security. The goal of the White House summit was to identify ways to improve the security of open source software and effectively support the open source community….

Software Security

Adobe Plugs Critical Photoshop Security Flaws

Issued by: Security Week

The flaws, rated critical, expose both Windows and MacOS users to code execution attacks, Adobe said in an advisory released Tuesday. The updates, available for Photoshop 2020 and Photoshop 2021, are being pushed via the software’s automatic updating mechanism. Adobe described the vulnerabilities as memory corruption issues with 7.8 CVSS scores. The company also shipped…

Application Security, Vulnerabilities

About 50% of Apps Are Accruing Unaddressed Vulnerabilities

Issued by: Dark Reading

The latest edition of Veracode’s annual “State of Software Security” study released this week shows that many enterprise organizations are at increased breach risk because of aging, unaddressed application security flaws. Veracode recently analyzed data from application security tests on more than 85,000 applications and found that, on average, companies fix just 56% of all…

Application Security

What is application security? A process and tools for securing software

Issued by: CSO

Application security is the process of making apps more secure by finding, fixing, and enhancing the security of apps. Much of this happens during the development phase, but it includes tools and methods to protect apps once they are deployed. This is becoming more important as hackers increasingly target applications with their attacks. Application security…

Vulnerabilities

What’s Under Your Hood? Security & the Connected Car

Issued by: Black Duck

Picture this: you’re driving your newly purchased, fully equipped, top-of-the-line automobile. You’ve just filled your tank, thanks to the crowd sourcing app GasBuddy, and you’re about to begin the commute to work. But first— coffee. Thanks to SYNC3, Ford’s latest infotainment system, you easily order by stating “Alexa, ask Starbucks to start my order.” Your…

Software Security

Ubuntu 17.10 brings enhanced security and productivity for developers

Issued by: Help Net Security

Canonical released Ubuntu 17.10 featuring a new GNOME desktop on Wayland, and new versions of KDE, MATE and Budgie. On the cloud, 17.10 brings Kubernetes 1.8 for hyper-elastic container operations, and minimal base images for containers. Enhanced security and productivity for developers The Atom editor and Microsoft Visual Studio Code are emerging as the new wave of…

Software Security

Shift your perspective on cybercrime to realize how well you’re doing

Issued by: CSO

A report recently surfaced placing the global impact of cybercrime at a staggering $450B. Naturally, it pressed on the tender wound and supplied further evidence that we are woefully unprepared, globally, to tackle such a complex challenge. In 2016 “cybercrime cost the global economy over $450 billion, over 2 billion personal records were stolen and…