Application Security News and Articles
Prove launched Unified Authentication, an authentication solution that passively and persistently recognizes customers, no matter where they appear or how often their devices or credentials change. This launch reflects a critical market shift: ...
Trend Micro announced new agentic AI technology designed to solve the traditional pain points associated with Security Information and Event Management (SIEM). When combined with Trend’s digital twin capabilities it will help to transform ...
What kills most companies in a breach isn’t the first break-in. It’s what happens next. One stolen password turns into ten compromised systems, and suddenly your backups are toast, your finance apps are locked, and the help desk is sprinting ...
Rubrik launched Agent Rewind, following the close of Rubrik’s acquisition of Predibase. Agent Rewind, powered by Predibase AI infrastructure, will enable organizations to undo mistakes made by agentic AI by providing visibility into ...
1Kosmos has raised $57 million in Series B funding, which brings the total raised by the company to $72 million.
The post 1Kosmos Raises $57 Million for Identity Verification and Authentication Platform appeared first on SecurityWeek.
The RomCom attackers aren’t the only ones that have been leveraging the newly unveiled WinRAR vulnerability (CVE-2025-8088) in zero-day attacks: according to Russian cybersecurity company BI.ZONE, a group tracked as Paper Werewolf has been ...
Taking place August 12-13, CodeSecCon is the premier virtual event bringing together developers and cybersecurity professionals to revolutionize the way applications are built, secured, and maintained.
The post CodeSecCon Is Today: Where Software ...
In 2025, cybersecurity isn’t just IT’s job — it’s a core business survival skill against faster, smarter and more targeted threats.
The post What are the Biggest Cybersecurity Nightmares Your Business Might Face in 2025? appeared first on ...
Many global regulations and legislations have strict requirements around Java application security, incident reporting, and more. Azul has an unmatched set of solutions.
The post Three Ways to Ensure Regulatory and Legislative Compliance with ...
SAP has released 15 new security notes on the August 2025 Patch Tuesday, including for critical vulnerabilities.
The post SAP Patches Critical S/4HANA Vulnerability appeared first on SecurityWeek.
The post IRONSCALES Named to Inc. 5000 List of America’s Fastest-Growing Private Companies for Fifth Consecutive Year appeared first on Security Boulevard.
Picture this: Your cybersecurity team just received 10,000 new vulnerability alerts, three compliance frameworks need updating, and the board wants a risk assessment by Friday. Sound familiar?
The post The Future of AI in Cyber Risk Management: ...
Sometimes, the most powerful exploits don’t show a single hint in the app’s response.Continue reading on System Weakness »
Nisos
Executive PII Exposure: Why You Need Ongoing Monitoring
Exposed personal data is fueling executive impersonation, fraud, and social engineering. Here's what enterprise leaders need to know...
The post Executive PII Exposure: Why You Need ...
The recently patched Erlang/OTP flaw CVE-2025-32433 has been exploited since early May, shortly after its existence came to light.
The post OT Networks Targeted in Widespread Exploitation of Erlang/OTP Vulnerability appeared first on SecurityWeek.
Open Bullet 2 is an open-source tool built for credential stuffing attacks, automated attempts to gain access to user accounts using stolen credentials from data breaches. It supports both website and mobile application targets and has become a ...
Vulnerability management (VM) is the continuous process of finding, evaluating, listing, reporting, and providing AI-driven patch recommendations for security vulnerabilities across an organization’s inventory. In practice, this means regularly ...
Instead of focusing only on corporate systems, some APT groups are now going after executives in their personal lives. Home networks, private devices, and even family members have become targets. This approach works because executives often work ...
Security leaders are flush with tools and data, but it’s not helping their programs mature. In this Help Net Security video, PlexTrac’s Dan DeCloss outlines the 3 key gaps holding security programs back and what sets mature programs ...
EntraGoat is a purpose-built tool that sets up a vulnerable Microsoft Entra ID environment to mimic real-world identity security issues. It’s designed to help security professionals practice spotting and exploiting common misconfigurations. The ...
