Application Security News and Articles


TikTok Faces Fresh European Privacy Investigation Over China Data Transfers

The Irish Data Privacy Commission announced that TikTok is facing a new European Union privacy investigation into user data sent to China. The post TikTok Faces Fresh European Privacy Investigation Over China Data Transfers appeared first on ...

July 2025 Breaks a Decade of Monthly Android Patches

Since August 2015, Google has delivered a constant stream of monthly security patches for Android. Until July 2025. The post July 2025 Breaks a Decade of Monthly Android Patches appeared first on SecurityWeek.

Rowhammer Attack Demonstrated Against Nvidia GPU

Researchers demonstrated GPUHammer — a Rowhammer attack against GPUs — by degrading the accuracy of machine learning models. The post Rowhammer Attack Demonstrated Against Nvidia GPU appeared first on SecurityWeek.

Bitwarden MCP server equips AI systems with controlled access to credential workflows

Bitwarden launched a new Model Context Protocol (MCP) server, enabling secure integration between AI agents and credential workflows. This release positions Bitwarden at the forefront of empowering AI assistants to access, generate, retrieve, and ...

Token Security launches two features to secure AI agents and machine identities

Token Security announced two transformative innovations that redefine how enterprises discover, govern, and secure expanding universe of AI agents and machine identities. The company has launched an AI Discovery Engine for NHIs and introduced the ...

Where policy meets profit: Navigating the new frontier of defense tech startups

In this Help Net Security interview, Thijs Povel, Managing Partner at Ventures.eu, discusses how the firm evaluates emerging technologies through the lens of defense and resilience. He explains how founders from both defense and adjacent sectors ...

Employees are quietly bringing AI to work and leaving security behind

While IT departments race to implement AI governance frameworks, many employees have already opened a backdoor for AI, according to ManageEngine. The rise of unauthorized AI use Shadow AI has quietly infiltrated organizations across North ...

Financial firms are locking the front door but leaving the back open

Financial institutions are building stronger defenses against direct cyberattacks, but they may be overlooking a growing problem: their vendors. According to Black Kite’s new report, third-party risk has become one of the biggest cybersecurity ...

New infosec products of the week: July 11, 2025

Here’s a look at the most interesting products from the past week, featuring releases from Barracuda Networks, Cynomi, Lepide, Tosibox, and Zenni Optical. Cynomi’s platform updates enable service providers to prioritize their security efforts ...

4 Arrests in Dawn Raid of Scattered-Spider Suspects

Alleged arachnid arrests: Three teenage males and a young woman hauled away by cops, suspected of hacking huge retailers. The post 4 Arrests in Dawn Raid of Scattered-Spider Suspects appeared first on Security Boulevard.

Why your AppSec Tool Stack Is Failing in the Age of AI

The world of software development is changing fast. AI isn’t just influencing software – it’s reshaping how software is written and the components it’s made of. First, AI-generated code is accelerating development. Code is produced ...

eSIM Hack Allows for Cloning, Spying 

Details have been disclosed for an eSIM hacking method that could impact many, but the industry is taking action. The post eSIM Hack Allows for Cloning, Spying  appeared first on SecurityWeek.

Four arrested in connection with M&S, Co-op ransomware attacks

Four individuals suspected of having been involved in the ransomware attacks that hit UK-based retailers earlier this year have been arrested by the UK National Crime Agency. “Two males aged 19, another aged 17, and a 20-year-old female ...

Ingram Micro Restores Systems Impacted by Ransomware

Ingram Micro has restored operations across all countries and regions after disconnecting systems to contain a ransomware attack. The post Ingram Micro Restores Systems Impacted by Ransomware appeared first on SecurityWeek.

Four Arrested in UK Over M&S, Co-op Cyberattacks

Three teens and a woman have been arrested by the UK’s NCA over the hacking of M&S, Co-op and Harrods. The post Four Arrested in UK Over M&S, Co-op Cyberattacks appeared first on SecurityWeek.

Secure Coding Part 5: Command Injection — Type

Previous Part — Secure Coding Part 4: Command Injection — IntroductionContinue reading on Medium »

Secure Coding Part 5: Command Injection — Type

Previous Part — Secure Coding Part 4: Command Injection — IntroductionContinue reading on Medium »

Qantas Confirms 5.7 Million Impacted by Data Breach

Hackers compromised names, addresses, email address, phone numbers, and other information pertaining to Qantas customers. The post Qantas Confirms 5.7 Million Impacted by Data Breach appeared first on SecurityWeek.

Ruckus network management solutions riddled with unpatched vulnerabilities

Claroty researcher Noam Moshe has discovered serious vulnerabilities in two Ruckus Networks (formerly Ruckus Wireless) products that may allow attackers to compromise the environments managed by the affected software, Carnegie Mellon ...

Sigma360 AI Investigator Agent reduces manual reviews

Sigma360 launched AI Investigator Agent, an autonomous GenAI agent that transforms how compliance teams handle risk alerts. This innovation leverages advanced AI and entity resolution models to clear easily identifiable false positives, reducing ...