Application Security News and Articles


DEF CON 33: Dreadwware Interviews Jordan Kasper On Open Source In Government

Creators, Authors and Presenters: Dreadwware & Jordan Kasper Our sincere appreciation to DEF CON, and the Creators/Presenters/Authors for publishing their timely DEF CON 33 outstanding content. Originating from the conference's events located ...

How to Implement a Zero Trust Security Model

The post How to Implement a Zero Trust Security Model appeared first on AI Security Automation. The post How to Implement a Zero Trust Security Model appeared first on Security Boulevard.

Detect Secrets in GitLab CI Logs using ggshield and Bring Your Own Source

Discover how to automatically detect secrets in GitLab CI logs using ggshield and GitGuardian's Bring Your Own Source initiative. Learn to set up real-time scanning to prevent credential leaks, enhance compliance, and secure your entire CI/CD ...

News alert: Syteca release 7.21 enhances privacy, access and oversight with powerful new tools

Waltham, Mass. Sept. 17, 2025, CyberNewswire — Syteca, a global cybersecurity provider, introduced the latest release of its platform, continuing the mission to help organizations reduce insider risks and ensure sensitive data ...

Randall Munroe’s XKCD ‘Sea Level’

via the oceanographic jocularity & dry-as-the-taiga wit of Randall Munroe, creator of XKCD Permalink The post Randall Munroe’s XKCD ‘Sea Level’ appeared first on Security Boulevard.

New in Syteca Release 7.21: Agentless Access, Sensitive Data Masking, and Smooth Session Playback

Waltham, United States, 17th September 2025, CyberNewsWire The post New in Syteca Release 7.21: Agentless Access, Sensitive Data Masking, and Smooth Session Playback appeared first on Security Boulevard.

Building a Notion-Based RAG SlackBot in One Day: Our Internal Hackathon Journey

Discover how DataDome built DomeRunner, a Notion-based Retrieval Augmented Generation (RAG) SlackBot, in just one day. Learn the architecture, models, and cost-efficient setup behind this assistant that makes technical documentation instantly ...

Insider Threats in Remote Work

Nisos Insider Threats in Remote Work Insider threat teams know the ground has shifted. The tools and assumptions designed for an office-centric world don’t translate to a workforce spread across homes... The post Insider Threats in Remote Work ...

Many networking devices are still vulnerable to pixie dust attack

Despite having been discovered and reported in 2014, the vulnerability that allows pixie dust attacks still impacts consumer and SOHO networking equipment around the world, Netrise researchers have confirmed. WPS and the pixie dust attack Wi-Fi ...

DEF CON 33: Andra Lezza On Being A DC Speake

Creators, Authors and Presenters: Helvetigoth interviews Andra Lezza Our sincere appreciation to DEF CON, and the Creators/Presenters/Authors for publishing their timely DEF CON 33 outstanding content. Originating from the conference's events ...

When Every Second Counts: Rethinking Authentication for Modern Healthcare

In the emergency room at 2 AM, a cardiac patient arrives in distress. The attending physician rushes to the nearest workstation—one that three other doctors have used in the past hour—and needs immediate access to prescribe life-saving ...

Virtual Event Today: Attack Surface Management Summit

SecurityWeek's Attack Surface Management Virtual Summit is now LIVE and runs today from 11AM – 4PM ET. The post Virtual Event Today: Attack Surface Management Summit appeared first on SecurityWeek.

The Industry’s Passkey Pivot Ignores a Deeper Threat: Device-Level Infections

Passkeys Are Progress, But They’re Not Protection Against Everything The cybersecurity community is embracing passkeys as a long-overdue replacement for passwords. These cryptographic credentials, bound to a user’s device, eliminate phishing ...

Irregular Raises $80 Million for AI Security Testing Lab

Irregular is testing the cybersecurity capabilities of AI models, including Anthropic’s Claude and OpenAI’s ChatGPT. The post Irregular Raises $80 Million for AI Security Testing Lab appeared first on SecurityWeek.

Why context is king in Attack Surface Management (ASM): Key insights from my conversations with security leaders

Learn how organizational factors influence Attack Surface Management (ASM) tooling through key insights from security engineers. The post Why context is king in Attack Surface Management (ASM): Key insights from my conversations with security ...

Nagomi Control reveals where organizations are most exposed

Nagomi Security announced the next step in its platform evolution with Nagomi Control, a new release that enhances Continuous Threat Exposure Management (CTEM) by enabling security teams to shift from identifying exposures to fixing them. While ...

A Fresh Look & an AI AppSec Teammate

Smarter navigation, faster insights, and better visibility from Legit The post A Fresh Look & an AI AppSec Teammate appeared first on Security Boulevard.

RegScale Raises $30 Million for GRC Platform

RegScale has raised a total of more than $50 million, with the latest investment being used to enhance its platform and expand. The post RegScale Raises $30 Million for GRC Platform appeared first on SecurityWeek.

Build Cyber Resilience With a Control Assessment | Kovrr

Articles related to cyber risk quantification, cyber risk management, and cyber resilience. The post Build Cyber Resilience With a Control Assessment | Kovrr appeared first on Security Boulevard.

Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker

The campaign targeted US government, think tank, and academic entities involved in US-China relations, international trade, and economic policy. The post Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker appeared first on ...