Application Security Archives

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Application Security

Google Releases Major Update for Open Source Vulnerability Scanner

Google has integrated OSV-SCALIBR features into OSV-Scanner, its free vulnerability scanner for open source developers.

Ionut ArghireMarch 18, 2025

Application Security

Popular GitHub Action Targeted in Supply Chain Attack

The tj-actions/changed-files GitHub Action, which is used in 23,000 repositories, has been targeted in a supply chain attack.

Eduard KovacsMarch 17, 2025

Application Security

Sola Security Deposits Hefty $30M Seed Funding

The financing was provided by S Capital and investor Mike Moritz, S32, Glilot Capital Partners, and several angel investors.

SecurityWeek NewsMarch 11, 2025

Application Security

OpenSSF Releases Security Baseline for Open Source Projects

The Open Source Security Foundation (OpenSSF) has created a structured set of security requirements for open source projects.

Eduard KovacsFebruary 26, 2025

Application Security

MirrorTab Raises $8.5M Seed Round to Take on Browser-Based Attacks

San Francisco startup secures $8.5 million in seed funding led by Valley Capital Partners to tackle browser-based malware attacks.

Ryan NaraineFebruary 18, 2025

Application Security

Semgrep Raises $100M for AI-Powered Code Security Platform

San Francisco application security startup raises $100 million in a Series D funding round led by Menlo Ventures.

SecurityWeek NewsFebruary 5, 2025

Application Security

CISA Outlines Efforts to Secure Open Source Software

Concluding a two-day OSS security summit, CISA details key actions to help improve open source security.

Ionut ArghireMarch 8, 2024

Application Security

Cyber Insights 2024: APIs – A Clear, Present, and Future Danger

The API attack surface is expanding and API vulnerabilities are growing. AI will help attackers find and exploit API vulnerabilities at scale.

Kevin TownsendFebruary 28, 2024

Application Security

No Security Scrutiny for Half of Major Code Changes: AppSec Survey

Only 54% of major code changes go through a full security review, a new CrowdStrike State of Application Security report reveals.

Ionut ArghireFebruary 15, 2024

Application Security

Google Contributes $1 Million to Rust, Says It Prevented Hundreds of Android Vulnerabilities

Google announces $1 million investment in improving Rust’s interoperability with legacy C++ codebases.

Ionut ArghireFebruary 5, 2024

Application Security

Google Open Sources AI-Aided Fuzzing Framework

Google has released its fuzzing framework in open source to boost the ability of developers and researchers to identify vulnerabilities.

Ionut ArghireFebruary 5, 2024

Application Security

Tor Code Audit Finds 17 Vulnerabilities

Over a dozen vulnerabilities discovered in Tor audit, including a high-risk flaw that can be exploited to inject arbitrary bridges.

Eduard KovacsJanuary 31, 2024

Application Security

New Class of CI/CD Attacks Could Have Led to PyTorch Supply Chain Compromise

Researchers detail a CI/CD attack leading to PyTorch releases compromise via GitHub Actions self-hosted runners.

Ionut ArghireJanuary 12, 2024

Application Security

Aqua Security Scores $60M Series E Funding

Late-stage player in the CNAPP space secures a $60 million extended Series E funding round at a valuation north of $1 billion.

Ryan NaraineJanuary 3, 2024

Application Security

SentinelOne Snaps Up Seed-Stage CNAPP Startup PingSafe

SentinelOne plans to acquire PingSafe in a cash-and-stock deal that adds cloud native application protection platform (CNAPP) technologies.

Ryan NaraineJanuary 3, 2024

Application Security

NSA Issues Guidance on Incorporating SBOMs to Improve Cybersecurity

NSA has published guidance to help organizations incorporate SBOM to mitigate supply chain risks.

Ionut ArghireDecember 18, 2023

Application Security

Adobe Patches 207 Security Bugs in Mega Patch Tuesday Bundle

Adobe warned users on both Windows and macOS systems about exposure to code execution, memory leaks and denial-of-service security issues.

Ryan NaraineDecember 12, 2023

Application Security

Five Eyes Agencies Publish Guidance on Eliminating Memory Safety Bugs

Government agencies in the Five Eyes countries have published new guidance on creating memory safety roadmaps.

Ionut ArghireDecember 7, 2023

Page 5 of 121‹ Previous 1 2 3 456 7 8 9 Next ›Last »

SECURITYWEEK NETWORK:

ICS:

Application Security

Google Releases Major Update for Open Source Vulnerability Scanner

Application Security

Popular GitHub Action Targeted in Supply Chain Attack

Application Security

Sola Security Deposits Hefty $30M Seed Funding

Application Security

OpenSSF Releases Security Baseline for Open Source Projects

Application Security

MirrorTab Raises $8.5M Seed Round to Take on Browser-Based Attacks

Application Security

Semgrep Raises $100M for AI-Powered Code Security Platform

Application Security

CISA Outlines Efforts to Secure Open Source Software

Application Security

Cyber Insights 2024: APIs – A Clear, Present, and Future Danger

Application Security

No Security Scrutiny for Half of Major Code Changes: AppSec Survey

Application Security

Google Contributes $1 Million to Rust, Says It Prevented Hundreds of Android Vulnerabilities

Application Security

Google Open Sources AI-Aided Fuzzing Framework

Application Security

Tor Code Audit Finds 17 Vulnerabilities

Application Security

New Class of CI/CD Attacks Could Have Led to PyTorch Supply Chain Compromise

Application Security

Aqua Security Scores $60M Series E Funding

Application Security

SentinelOne Snaps Up Seed-Stage CNAPP Startup PingSafe

Application Security

NSA Issues Guidance on Incorporating SBOMs to Improve Cybersecurity

Application Security

Adobe Patches 207 Security Bugs in Mega Patch Tuesday Bundle

Application Security

Five Eyes Agencies Publish Guidance on Eliminating Memory Safety Bugs

Featured

Cyberwarfare

Google Patches Chrome Sandbox Escape Zero-Day Caught by Kaspersky

Hacker Conversations

Hacker Conversations: Frank Trezza – From Phreaker to Pentester

Cloud Security

IngressNightmare Flaws Expose Kubernetes Clusters to Remote Hacking

Government

Despite Rip-and-Replace Efforts, FCC Suspects Banned Chinese Telecom Providers Still Active in US

Supply Chain Security

Impact, Root Cause of GitHub Actions Supply Chain Hack Revealed

Mobile & Wireless

Paragon Spyware Attacks Exploited WhatsApp Zero-Day

Cloud Security

What’s Behind Google’s $32 Billion Wiz Acquisition?

Latest News

Network Security

Vulnerability Exploitation Possibly Behind Widespread DrayTek Router Reboots

Vulnerabilities

VMware Patches Authentication Bypass Flaw in Windows Tools Suite

Artificial Intelligence

Microsoft Adds AI Agents to Security Copilot

Cybersecurity Funding

Charm Security Emerges From Stealth With $8 Million in Funding

Data Breaches

Numotion Data Breach Impacts Nearly 500,000 People

Security Architecture

Webinar Today: Which Security Testing Approach is Right for You?

Malware & Threats

Chinese APT Weaver Ant Targeting Telecom Providers in Asia

Daily Briefing Newsletter