Application Security News and Articles
See how Mend.io's Risk Reduction Dashboard works.
The post AppSec metrics fail, Mend.io’s Risk Reduction Dashboard fixes it appeared first on Security Boulevard.
Kentik has launched the Kentik AI Advisor, an agentic AI solution that understands enterprise and service provider networks, thinks critically, and offers guidance for designing, operating, and protecting infrastructure at scale. “We’ve been ...
Tenable has launched Tenable Cloud Vulnerability Management — a powerful new offering within Tenable One — to help vulnerability management leaders identify, prioritize, and remediate exposures across multi-cloud and hybrid ...
The Inc Ransom group has taken credit for the hack, claiming to have stolen several terabytes of data.
The post Pennsylvania Attorney General Confirms Data Breach After Ransomware Attack appeared first on SecurityWeek.
Hackers accessed a database containing information about alumni, donors, faculty, students, parents, and other individuals.
The post Princeton University Data Breach Impacts Alumni, Students, Employees appeared first on SecurityWeek.
Choosing Cloud Monitor Provides Stronger Safety Alerts, Cybersecurity Protection, and Peace of Mind—All Within Budget At Richland County Community Unit School District #1 in Illinois, Technology Coordinator Ryan Roark has spent 17 years ...
A threat actor exploited a vulnerability, exfiltrated data, and attempted to extort Eurofiber.
The post Data Stolen in Eurofiber France Hack appeared first on SecurityWeek.
Social media has been a familiar, even mundane, part of life for nearly two decades. It can be easy to forget it was not always that way.
In 2008, social media was just emerging into the mainstream. Facebook reached 100 million users that summer. ...
Google has shipped an emergency fix for a Chrome vulnerability (CVE-2025-13223) reported as actively exploited in the wild by its Threat Analysis Group (TAG). About CVE-2025-13223 CVE-2025-13223 is a type confusion vulnerability in V8, the ...
TL;DR
AI-powered vulnerability remediation often fails because it lacks context about how your applications actually work. Runtime intelligence solves this by providing AI with real-world application behavior data, architecture insights, and ...
Introduction PKI is one of the most important facets of current data protection and the foundation of secure communication and data exchange. Just like any other Information Technology (IT) asset, PKI poses a management headache in large ...
As organizations enter 2026, the real threat isn’t novel exploits but blind spots in supply chain security, proximity attack surfaces, and cross-functional accountability. This piece explains why fundamentals must become continuous, operational ...
From prompt injection to cascading agent failures, GenAI expands the enterprise attack surface. A governance-first, security-focused approach—rooted in trusted data, guardrails, and ongoing oversight—is now critical for responsible AI ...
We recently detected and blocked a large-scale fake account creation campaign. The attacker attempted to register tens of thousands of accounts using bots, automating the entire signup process through a modified version of Chrome. To evade ...
For every organization, no matter the size or industry, the integrity and security of data is more crucial than ever as it faces the possibility of a cyber breach everyday. But what separates a company that bounces back quickly from one that ...
As state and federal authorities seek broad access to a seized phone, a Virginia prosecutor argues for narrowly tailored digital searches — a clash that could redefine Fourth Amendment protections for modern devices.
The post The Battle Over ...
The flaw was reported by Google's Threat Analysis Group and was likely exploited by a commercial spyware vendor.
The post Chrome 142 Update Patches Exploited Zero-Day appeared first on SecurityWeek.
India’s Digital Personal Data Protection Act (DPDP), 2023, signaled the country’s commitment to building a modern and globally aligned privacy framework. But as with any legislation, the true operational impact becomes clear only when ...
SANTA CLARA, Calif., Nov 18, 2025 — International Data Corporation (IDC) officially released the “2025 IDC China Top 10 Cybersecurity Professionals” at the 10th IDC China CIO Summit last month. This honor is intended to recognize ...
Cybersecurity is no longer just an IT issue; it is a strategic imperative that touches every aspect of modern business. In today’s digital landscape, organizations face increasingly sophisticated threats that can disrupt operations, tarnish ...
