Application Security Archives

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Application Security

Google Releases Major Update for Open Source Vulnerability Scanner

Google has integrated OSV-SCALIBR features into OSV-Scanner, its free vulnerability scanner for open source developers.

Ionut Arghire6 days ago

Application Security

Popular GitHub Action Targeted in Supply Chain Attack

The tj-actions/changed-files GitHub Action, which is used in 23,000 repositories, has been targeted in a supply chain attack.

Eduard KovacsMarch 17, 2025

Application Security

Sola Security Deposits Hefty $30M Seed Funding

The financing was provided by S Capital and investor Mike Moritz, S32, Glilot Capital Partners, and several angel investors.

SecurityWeek NewsMarch 11, 2025

Application Security

OpenSSF Releases Security Baseline for Open Source Projects

The Open Source Security Foundation (OpenSSF) has created a structured set of security requirements for open source projects.

Eduard KovacsFebruary 26, 2025

Application Security

MirrorTab Raises $8.5M Seed Round to Take on Browser-Based Attacks

San Francisco startup secures $8.5 million in seed funding led by Valley Capital Partners to tackle browser-based malware attacks.

Ryan NaraineFebruary 18, 2025

Application Security

Semgrep Raises $100M for AI-Powered Code Security Platform

San Francisco application security startup raises $100 million in a Series D funding round led by Menlo Ventures.

SecurityWeek NewsFebruary 5, 2025

Application Security

Software Security Firm RunSafe Raises $12 Million in Series B Funding

RunSafe Security has raised $12 million in a Series B funding round for a solution designed to help companies develop secure software.

Eduard KovacsSeptember 17, 2024

Application Security

When Convenience Costs: CISOs Struggle With SaaS Security Oversight

SaaS applications are so easy to use, the decision, and the deployment, is sometimes undertaken by the business unit user with little reference to,...

Kevin TownsendAugust 27, 2024

Application Security

How Exceptional CISOs Are Igniting the Security Fire in Their Development Team

For years, many CISOs have struggled to influence their development cohort on the importance of putting security first.

Matias MadouAugust 20, 2024

Application Security

GitHub Makes Copilot Autofix Generally Available

GitHub has made AI-powered Copilot Autofix generally available to help developers fix code vulnerabilities faster.

Ionut ArghireAugust 15, 2024

Application Security

Homebrew Security Audit Finds 25 Vulnerabilities

Vulnerabilities in Homebrew could have allowed attackers to load executable code and modify binary builds, security audit finds.

Ionut ArghireAugust 1, 2024

Application Security

Millions of Websites Susceptible to XSS Attack via OAuth Implementation Flaw

Researchers discovered and published details of an XSS attack that could potentially impact millions of websites around the world.

Kevin TownsendJuly 29, 2024

Application Security

Application Security Startup Heeler Raises $8.5 Million in Seed Funding

Heeler Security has raised $8.5 million in seed funding for its ProductDNA application security technology.

Ionut ArghireJuly 22, 2024

Application Security

CISA Red Team Exercise Finds Critical Vulnerabilities in Federal Civilian Agency

CISA says a SILENTSHIELD red team assessment found gaping holes in the security posture of a federal civilian executive branch organization.

Ionut ArghireJuly 12, 2024

Application Security

SAP Patches High-Severity Vulnerabilities in PDCE, Commerce

Patch Tuesday: Enterprise software vendor SAP releases patches for high-severity vulnerabilities in multiple products and tools.

Ionut ArghireJuly 9, 2024

Application Security

Critical CocoaPods Flaws Exposed Many iOS, macOS Apps to Supply Chain Attacks

EVA Information Security has shared details on three CocoaPods vulnerabilities impacting millions of macOS and iOS applications.

Ionut ArghireJuly 2, 2024

Application Security

PortSwigger Scores Hefty $112 Million Investment

The British company behind the popular Burp Suite pen-test utilities has banked a massive $112 million investment from Brighton Park Capital.

SecurityWeek NewsJuly 1, 2024

Application Security

US, Allies Warn of Memory Unsafety Risks in Open Source Software

Most critical open source software contains code written in a memory unsafe language, US, Australian, and Canadian government agencies warn.

Ionut ArghireJune 27, 2024

Page 3 of 121‹ Previous 1 234 5 6 7 Next ›Last »

SECURITYWEEK NETWORK:

ICS:

Application Security

Google Releases Major Update for Open Source Vulnerability Scanner

Application Security

Popular GitHub Action Targeted in Supply Chain Attack

Application Security

Sola Security Deposits Hefty $30M Seed Funding

Application Security

OpenSSF Releases Security Baseline for Open Source Projects

Application Security

MirrorTab Raises $8.5M Seed Round to Take on Browser-Based Attacks

Application Security

Semgrep Raises $100M for AI-Powered Code Security Platform

Application Security

Software Security Firm RunSafe Raises $12 Million in Series B Funding

Application Security

When Convenience Costs: CISOs Struggle With SaaS Security Oversight

Application Security

How Exceptional CISOs Are Igniting the Security Fire in Their Development Team

Application Security

GitHub Makes Copilot Autofix Generally Available

Application Security

Homebrew Security Audit Finds 25 Vulnerabilities

Application Security

Millions of Websites Susceptible to XSS Attack via OAuth Implementation Flaw

Application Security

Application Security Startup Heeler Raises $8.5 Million in Seed Funding

Application Security

CISA Red Team Exercise Finds Critical Vulnerabilities in Federal Civilian Agency

Application Security

SAP Patches High-Severity Vulnerabilities in PDCE, Commerce

Application Security

Critical CocoaPods Flaws Exposed Many iOS, macOS Apps to Supply Chain Attacks

Application Security

PortSwigger Scores Hefty $112 Million Investment

Application Security

US, Allies Warn of Memory Unsafety Risks in Open Source Software

Featured

Government

Despite Rip-and-Replace Efforts, FCC Suspects Banned Chinese Telecom Providers Still Active in US

Supply Chain Security

Impact, Root Cause of GitHub Actions Supply Chain Hack Revealed

Mobile & Wireless

Paragon Spyware Attacks Exploited WhatsApp Zero-Day

Cloud Security

What’s Behind Google’s $32 Billion Wiz Acquisition?

Phishing

Scareware Combined With Phishing in Attacks Targeting macOS Users

Funding/M&A

Google to Acquire Cloud Security Giant Wiz for $32 Billion in Cash

Artificial Intelligence

ChatGPT Tool Vulnerability Exploited Against US Government Organizations

Latest News

Government

NIST Still Struggling to Clear Vulnerability Submissions Backlog in NVD

Cloud Security

Oracle Denies Cloud Breach After Hacker Offers to Sell Data

Vulnerabilities

Russian Firm Offers $4 Million for Telegram Exploits

Security Architecture

Webinar Tomorrow: Which Security Testing Approach is Right for You?

Government

US Lifts Sanctions Against Crypto Mixer Tornado Cash

Malware & Threats

Medusa Ransomware Uses Malicious Driver to Disable Security Tools

Data Protection

NetSfere Launches Quantum-Resilient Messaging Platform for Enterprise and Government Use

Daily Briefing Newsletter