Application Security
PayPal is alerting roughly 35,000 individuals that their accounts have been targeted in a credential stuffing campaign.
Hi, what are you looking for?
SecurityWeek
Application Security
Twitter sent a copyright notice to code hosting service GitHub to request the removal of a repository that contained Twitter source code.
Application Security
Backslash Security banks seed-stage capital to build new technology to identify and mitigate “toxic code flows” in cloud-native applications.
Application Security
Black Lantern Security introduces Badsecrets, an open source tool for identifying known or weak cryptographic secrets across multiple platforms.
Application Security
GitHub this week made secret scanning generally available and free for all public repositories.
Application Security
While there are many routes to application security, bundles that allow security teams to quickly and easily secure applications and affect security posture in...
Application Security
GitHub this week announced the revocation of three certificates used for the GitHub Desktop and Atom applications.
Application Security
Drupal released updates that resolve four vulnerabilities in Drupal core and three plugins.
Application Security
A new report finds that barely 1% of all SBOMs being generated today meets the “minimum elements” defined by the U.S. government.
Application Security
A CSRF vulnerability in the source control management (SCM) service Kudu could be exploited to achieve remote code execution in multiple Azure services.
Application Security
Many developers and security people admit to having experienced a breach effected through compromised API credentials.
Application Security
Vendors and agencies are bypassing a security patch that Adobe released in February 2022 to address CVE-2022-24086.
Incident Response
Microsoft has rolled out a preview version of Security Copilot, a ChatGPT-powered tool to help organizations automate cybersecurity tasks.
IoT Security
CISO Strategy
Data Breaches
Nation-State
Mandiant flags APT43 as a “moderately-sophisticated cyber operator that supports the interests of the North Korean regime."
Risk Management
