Application Security Archives

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Application Security

RevEng.ai Raises $4.15 Million to Secure Software Supply Chain

RevEng.ai has raised $4.15 million in seed funding for an AI platform that automatically detects malicious code and vulnerabilities in software.

Ionut ArghireJune 27, 2025

Application Security

Thousands of SaaS Apps Could Still Be Susceptible to nOAuth

New research suggests more than 10,000 SaaS apps could remain vulnerable to a nOAuth variant despite the basic issue being disclosed in June 2023.

Kevin TownsendJune 25, 2025

Application Security

Five Zero-Days, 15 Misconfigurations Found in Salesforce Industry Cloud

Security researchers uncover critical flaws and widespread misconfigurations in Salesforce’s industry-specific CRM solutions.

Kevin TownsendJune 10, 2025

Application Security

Watch Now: Why Context is a Secret Weapon in Application Security Posture Management

Join the live webinar to understand why data in itself is not enough to make informed decisions for prioritization.

SecurityWeek NewsMay 30, 2025

Application Security

CISA Releases Final IPv6 Security Guidance for Federal Agencies

The U.S. government's Cybersecurity and Infrastructure Security Agency (CISA) on Thursday released the final version of its IPv6 security guidance for federal agencies.

Ionut ArghireJanuary 21, 2022

Application Security

Prolific Chinese APT Caught Using ‘MoonBounce’ UEFI Firmware Implant

Threat hunters at Kaspersky have spotted a well-known Chinese APT actor using an UEFI implant to maintain stealthy persistence across reboots, disk formatting or...

Ryan NaraineJanuary 20, 2022

Application Security

NSA Authorized to Issue Binding Operational Directives to Boost NSS Cybersecurity

Eduard KovacsJanuary 20, 2022

Application Security

Microsoft Edge Adds Security Mode to Thwart Malware Attacks

A new security feature in the latest beta of the Microsoft Edge browser can help protect web surfers from zero-day attacks.

Ionut ArghireJanuary 19, 2022

Application Security

Project Zero: Zoom Platform Missed ASLR Exploit Mitigation

A prominent security researcher poking around at the Zoom video conferencing platform found worrying signs the company failed to enable a decades-old anti-exploit mitigation,...

Ryan NaraineJanuary 19, 2022

Application Security

Mandatory Chinese Olympics App Has ‘Devastating’ Encryption Flaw: Analyst

An app all attendees of the upcoming Beijing Olympics must use has encryption flaws that could allow personal information to leak, a cyber security...

AFPJanuary 19, 2022

Application Security

Multi-Factor Authentication Bypass Led to Box Account Takeover

A vulnerability in Box's implementation of multi-factor authentication (MFA) allowed attackers to take over accounts without having access to the victim’s phone, according to...

Ionut ArghireJanuary 18, 2022

Application Security

U.S. Government, Tech Giants Discuss Open Source Software Security

Eduard KovacsJanuary 14, 2022

Application Security

FCC Chair Proposes New Policies for Carrier Data Breach Reporting

Federal Communications Commission (FCC) chairwoman Jessica Rosenworcel this week proposed updated policies around telecom providers’ reporting of data breaches.

Ionut ArghireJanuary 13, 2022

Application Security

Apple Patches iOS HomeKit Flaw After Researcher Warning

Apple has released an iOS security update with a fix for a persistent denial-of-service flaw in the HomeKit software framework but only after an...

Ryan NaraineJanuary 12, 2022

Application Security

Mozilla Patches High-Risk Firefox, Thunderbird Security Flaws

Mozilla has released Firefox 96 with patches for 18 security vulnerabilities affecting its flagship web browser and the Thunderbird mail program.Of the newly patched...

Ionut ArghireJanuary 12, 2022

Application Security

Patch Tuesday: Microsoft Calls Attention to ‘Wormable’ Windows Flaw

Microsoft’s first batch of patches for 2022 is a big one: 97 documented security flaws in the Windows ecosystem, some serious enough to cause...

Ryan NaraineJanuary 11, 2022

Application Security

Moxie Marlinspike Steps Down as Signal CEO

Celebrated cryptographer Moxie Marlinspike is stepping down as chief executive at Signal, temporarily turning the reins of the popular encrypted messaging platform to WhatsApp...

SecurityWeek NewsJanuary 11, 2022

Application Security

Apache Foundation Calls Out Open-Source Leechers

The Apache Software Foundation (ASF) is calling out for-profit companies leeching on open-source code, warning that “only a tiny percentage” of downstream vendors are...

Ryan NaraineJanuary 10, 2022

Application Security

Attackers Hitting VMWare Horizon Servers With Log4j Exploits

Threat hunters in the U.K.’s National Health Service have raised an alarm for an unknown threat actor hitting vulnerable VMWare Horizon servers with exploits...

Ryan NaraineJanuary 7, 2022

Application Security

Zloader Banking Malware Exploits Microsoft Signature Verification

The aggressive Zloader banking malware campaign is exploiting Microsoft’s digital signature verification method to inject code into a signed system DLL, according to researchers...

Ionut ArghireJanuary 5, 2022

Application Security

VMware Plugs Security Holes in Workstation, Fusion and ESXi

VMware this week shipped security updates for its Workstation, Fusion and ESXi product lines, warning that a heap-overflow vulnerability could expose users to code...

Ionut ArghireJanuary 5, 2022

Application Security

Recorded Future Acquires SecurityTrails in $65M Deal

With eyes firmly set on the booming attack surface management space, threat intel powerhouse Recorded Future is shelling out $65 million to purchase SecurityTrails,...

Ryan NaraineJanuary 5, 2022

Application Security

Anti-Bot Fraud Detection Firm HUMAN Snags $100M Investment

Enterprise anti-bot and fraud detection startup HUMAN Security has closed a new $100 million funding round and announced plans to expand into new product...

Ryan NaraineJanuary 4, 2022

Application Security

Google Acquires Siemplify in Ambitious Cybersecurity Push

Google has expanded its push into the lucrative cybersecurity business with a new deal to acquire Siemplify, a late-state Israeli startup selling SOAR (security...

Ryan NaraineJanuary 4, 2022

Page 24 of 74« First ‹ Previous 20 21 22 232425 26 27 28 Next ›Last »

Virtual Event: Threat Detection and Incident Response Summit

May 21, 2025

Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.

Webinar: Cut Through the Noise: Why Context is a Secret Weapon in ASPM

May 29, 2025

Learn how integrating BAS and Automated Penetration Testing empowers security teams to quickly identify and validate threats, enabling prompt response and remediation.

Coro, a provider of cybersecurity solutions for SMBs, has appointed Joe Sykora as CEO.

SonicWall has hired Rajnish Mishra as Senior Vice President and Chief Development Officer.

Kenna Security co-founder Ed Bellis has joined Empirical Security as Chief Executive Officer.

Robert Shaker II has joined application security firm ActiveState as Chief Product and Technology Officer.

MorganFranklin Cyber has promoted Nick Stallone and Ferdinand Hamada into newly created roles.

More People On The Move

SECURITYWEEK NETWORK:

ICS:

Application Security

RevEng.ai Raises $4.15 Million to Secure Software Supply Chain

Application Security

Thousands of SaaS Apps Could Still Be Susceptible to nOAuth

Application Security

Five Zero-Days, 15 Misconfigurations Found in Salesforce Industry Cloud

Application Security

Watch Now: Why Context is a Secret Weapon in Application Security Posture Management

Application Security

CISA Releases Final IPv6 Security Guidance for Federal Agencies

Application Security

Prolific Chinese APT Caught Using ‘MoonBounce’ UEFI Firmware Implant

Application Security

NSA Authorized to Issue Binding Operational Directives to Boost NSS Cybersecurity

Application Security

Microsoft Edge Adds Security Mode to Thwart Malware Attacks

Application Security

Project Zero: Zoom Platform Missed ASLR Exploit Mitigation

Application Security

Mandatory Chinese Olympics App Has ‘Devastating’ Encryption Flaw: Analyst

Application Security

Multi-Factor Authentication Bypass Led to Box Account Takeover

Application Security

U.S. Government, Tech Giants Discuss Open Source Software Security

Application Security

FCC Chair Proposes New Policies for Carrier Data Breach Reporting

Application Security

Apple Patches iOS HomeKit Flaw After Researcher Warning

Application Security

Mozilla Patches High-Risk Firefox, Thunderbird Security Flaws

Application Security

Patch Tuesday: Microsoft Calls Attention to ‘Wormable’ Windows Flaw

Application Security

Moxie Marlinspike Steps Down as Signal CEO

Application Security

Apache Foundation Calls Out Open-Source Leechers

Application Security

Attackers Hitting VMWare Horizon Servers With Log4j Exploits

Application Security

Zloader Banking Malware Exploits Microsoft Signature Verification

Application Security

VMware Plugs Security Holes in Workstation, Fusion and ESXi

Application Security

Recorded Future Acquires SecurityTrails in $65M Deal

Application Security

Anti-Bot Fraud Detection Firm HUMAN Snags $100M Investment

Application Security

Google Acquires Siemplify in Ambitious Cybersecurity Push

Daily Briefing Newsletter

Trending

Virtual Event: Threat Detection and Incident Response Summit

Webinar: Cut Through the Noise: Why Context is a Secret Weapon in ASPM

People on the move

Expert Insights

What Can Businesses Do About Ethical Dilemmas Posed by AI?

Like Ransoming a Bike: Organizational Muscle Memory Drives the Most Effective Response

Why Sincerity Is a Strategic Asset in Cybersecurity

Identity Is the New Perimeter: Why Proofing and Verification Are Business Imperatives

Choosing a Clear Direction in the Face of Growing Cybersecurity Demands

Daily Briefing Newsletter