Application Security News and Articles
With the June 2023 Supply Chain Security executive order looming, Deepfactor 3.2 introduces important SCA, SBOM, and runtime security enhancements designed to help customers reduce risk, improve supply chain security, and comply with U.S. ...
Ransomware attacks have become one of the most prevalent and damaging cybersecurity threats in recent years. With high-profile incidents like the WannaCry and NotPetya attacks, ransomware has shown that it can cause widespread disruption and ...
Italian luxury sports car maker Ferrari has suffered a data breach and has confirmed on Monday that it “was recently contacted by a threat actor with a ransom demand related to certain client contact details,” but that it won’t ...
Email is the most relied-on means of communication for businesses, but it also poses a significant risk due to the combined threats of inbound phishing attacks, human error and data exfiltration leading to outbound security incidents. A report ...
SecurityWeek spoke to VC firm Quantum Exponential about the UK National Quantum Strategy and investments in quantum computing.
The post News Analysis: UK Commits $3 Billion to Support National Quantum Strategy appeared first on SecurityWeek.
Software developers have been targeted in a new attack via malicious packages in the NuGet repository.
The post Malicious NuGet Packages Used to Target .NET Developers appeared first on SecurityWeek.
In today’s digital world, software applications have become an integral part of our lives. From mobile apps to web-based software, these…Continue reading on Medium »
A vulnerability in Google Pixel phones allows for the recovery of an original, unedited screenshot from the cropped version.
The post Google Pixel Vulnerability Allows Recovery of Cropped Screenshots appeared first on SecurityWeek.
Industrial organizations using HMI and SCADA products from Aveva have been informed about potentially serious vulnerabilities.
The post Organizations Notified of Remotely Exploitable Vulnerabilities in Aveva HMI, SCADA Products appeared first on ...
How must firms adapt to a challenging enterprise data protection landscape in 2023 and beyond?
The post What Do Firms Need to do to Ensure Enterprise Data Protection in 2023? appeared first on Security Boulevard.
HIPAA (Data Privacy) vs 21st Century Cures Act (Interoperability): Reducing the Conflict in the Healthcare Industry Interoperability in healthcare is essential for creating a more connected, patient-centered healthcare system that delivers better ...
In this episode of SaaSTrana, Venky and Raghu, Co-Founder of Sprinto, discusses why SaaS companies should pay close attention to security measures to become SOC 2 compliant. Compliance Automation with.
The post SOC 2 Compliance for SaaS Startups ...
Introduction E-commerce has dominated our lives in the current digital era, and many of us rely on it to fulfill our everyday shopping demands. The risk of business logic problems, which can impact user experience and general security of these ...
My mother is 67 years old. She is a brilliant woman, educated and not at all afraid of technology. Yet, when I tried to get her to install Google Authenticator and use multi-factor authentication (MFA) for logging into applications, she found ...
In this Help Net Security video, Liudas Kanapienis, CEO of Ondato, discusses the impact of AI on the future of ID verification and how it is transforming the way identities are being verified.
The post The impact of AI on the future of ID ...
Hackers are diversifying attack methods, including a surge in QR code phishing campaigns, according to HP. From February 2022, Microsoft began blocking macros in Office files by default, making it harder for attackers to run malicious code. Data ...
Half of U.S. businesses say that security is the most influential factor when buying software, according to Capterra’s Security Features Survey. In fact, 45% have stopped using a specific type of software due to security concerns. Businesses ...
ForgeRock announced ForgeRock Enterprise Connect Passwordless, a new passwordless authentication solution that eliminates the need for users to interact with passwords inside large organizations. Enterprise Connect Passwordless is the latest ...
Eurotech announced its newest edge servers with scalable, cybersecurity certified – AI capabilities. Cyber-threats have become endemic and severely expose states and businesses of all sizes to the risk of loss of data, interruption of ...
Ferrari said that a ransomware attack was responsible for a data breach that exposed customer details, but did not impact company operations.
The post Ferrari Says Ransomware Attack Exposed Customer Data appeared first on SecurityWeek.