application security Archives - Page 11 of 15

FBI Warns of Employee Credential Phishing via Phone, Chat

Issued by: Security Week

Taking advantage of the COVID-19 pandemic, which has forced the broad adoption of telework, cyber-criminals and threat actors are attempting to exploit possible misconfiguration and lack of monitoring for remote network access and user privileges. An observed shift in tactics, the FBI says, is the targeting of all employee credentials, not exclusively of those individuals…

Application Security

85% of COVID-19 tracking apps leak data

Issued by: Help Net Security

71% of healthcare and medical apps have at least one serious vulnerability that could lead to a breach of medical data, according to Intertrust. The report investigated 100 publicly available global mobile healthcare apps across a range of categories—including telehealth, medical device, health commerce, and COVID-tracking—to uncover the most critical mHealth app threats. Cryptographic issues…

Application Security

The state of application security: What the statistics tell us

Issued by: CSO

The emergence of the DevOps culture over the past several years has fundamentally changed software development, allowing companies to push code faster and to automatically scale the infrastructure needed to support new features and innovations. The increased push toward DevSecOps, which bakes security into the development and operations pipelines, is now changing the state of…

Application Security

Application threats and security trends you need to know about

Issued by: Help Net Security

Applications are a gateway to valuable data, so it’s no wonder they are one of attackers’ preferred targets. And since modern applications aren’t a monolithic whole but consist of many separate components “glued together” over networks, attackers have at their disposal many “doors” through which they can attempt access to the data. Easy targets will…

Cloud Security

Do You Know Your Responsibilities When It Comes to Container Security?

Issued by: Security Intelligence

As you migrate your enterprise to the public cloud or multicloud, you want to realize some of its inherent benefits regardless of what service model you utilize. Whether your goal is cost optimization, scalability or elasticity, the cloud can allow your enterprise to adopt newer, cutting-edge technologies to innovate your business without the burden of…

Network Security

Free security resources for work-from-home employees during the COVID-19 crisis

Issued by: CSO

As the world “shelters in place” amid the COVID-19 crisis, some tech companies are stepping up and offering their products and services free of charge for a limited time. These offers will help organizations set up and protect remote employees faster. In some cases, vendors are also offering support services to help companies through the…

Application Security

How Visa built its own container security solution

Issued by: CSO

Like many large enterprises, financial services giant Visa has embraced containerization technologies that enable companies to move from legacy monolithic apps to microservice-based application architectures that are easier to maintain, update and deploy at scale on cloud infrastructure. But splitting apps into microservices also comes with the challenge of ensuring the containers hosting the various…

Application Security

Government Agency Partners on New Tool for Election Security

Issued by: Dark Reading

Arlo the auditing tool may play a key role in securing next year’s elections. The open source tool, created by VotingWorks in partnership with the Cybersecurity and Infrastructure Security Agency (CISA) and departments from a number of states, is intended to provide an easy way to perform the calculations needed for the audit: determine how…

Application Security

Blacklisted apps increase 20%, attackers focus on tax-branded key terms

Issued by: Help Net Security

In 2018, global app spending hit $101 billion and is expected to surpass that this year. Mobile is a significant portion of the overall corporate attack surface where security teams often suffer from a lack of visibility. For the second consecutive quarter, blacklisted apps increased with a 20% spike, accounting for over 2% of all…

Application Security, Vulnerabilities

About 50% of Apps Are Accruing Unaddressed Vulnerabilities

Issued by: Dark Reading

The latest edition of Veracode’s annual “State of Software Security” study released this week shows that many enterprise organizations are at increased breach risk because of aging, unaddressed application security flaws. Veracode recently analyzed data from application security tests on more than 85,000 applications and found that, on average, companies fix just 56% of all…