Application Security Archives

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Application Security

Endor Labs Raises $93 Million for AppSec Platform

Endor Labs has raised $93 million in a Series B funding round and announced a major expansion of its AppSec platform.

Eduard Kovacs2 days ago

Application Security

Miggo Security Banks $17M Series A for ADR Technology

Israeli runtime application security startups closes a $17 million Series A round led by Florida‑based SYN Ventures and YL Ventures.

SecurityWeek News2 days ago

Application Security

Open Source Security Firm Hopper Emerges From Stealth With $7.6M in Funding

Hopper has emerged from stealth mode with a solution designed to help organizations manage open source software risk.

Eduard Kovacs3 days ago

Application Security

Insurance Firm Lemonade Says API Glitch Exposed Some Driver’s License Numbers

Lemonade says the incident is not material and that its operations were not compromised, nor was its customer data targeted.

Ionut ArghireApril 15, 2025

Application Security

GitHub Announces General Availability of Security Campaigns

GitHub security campaigns make it easier for developers and security teams to collaborate on fixing vulnerabilities in their applications.

Eduard KovacsApril 10, 2025

Application Security

Compromised SpotBugs Token Led to GitHub Actions Supply Chain Hack

Evidence shows a SpotBugs token compromised in December 2024 was used in the March 2025 GitHub Actions supply chain attack.

Ionut ArghireApril 4, 2025

Application Security

GitHub Enterprise Server Gets New Security Capabilities

GitHub Enterprise Server 3.10 released with additional security capabilities, including support for custom deployment rules.

Ionut ArghireAugust 30, 2023

Application Security

Signs of Malware Attack Targeting Rust Developers Found on Crates.io

The Crates.io Rust package registry was targeted in preparation of a malware attack aimed at developers, according to Phylum.

Eduard KovacsAugust 28, 2023

Application Security

Google Brings AI Magic to Fuzz Testing With Eye-Opening Results

Google sprinkles magic of generative-AI into its open source fuzz testing infrastructure and finds immediate success with code coverage.

Ryan NaraineAugust 17, 2023

Application Security

Patch Tuesday: Adobe Patches 30 Acrobat, Reader Vulns

Adobe rolls out a big batch of security updates to fix at least 30 Acrobat and Reader vulnerabilities affecting Windows and macOS users.

Ryan NaraineAugust 8, 2023

Application Security

Apple Lists APIs That Developers Can Only Use for Good Reason

To boost user privacy, Apple is requiring app developers to declare a reason to use specific APIs.

Ionut ArghireJuly 31, 2023

Application Security

The Good, the Bad and the Ugly of Generative AI

Thinking through the good, the bad, and the ugly now is a process that affords us “the negative focus to survive, but a positive...

Marc SolomonJuly 27, 2023

Application Security

10 Steps to Help Secure Your APIs

Securing APIs is a noble, though complex journey. Security teams can leverage these 10 steps to help secure their APIs.

Joshua GoldfarbJuly 20, 2023

Application Security

API Flaw in QuickBlox Framework Exposed PII of Millions of Users

QuickBlox SDK and API vulnerabilities impact chat and video applications used by industries including telemedicine, smart IoT, and finance.

Kevin TownsendJuly 13, 2023

Application Security

Adobe Patch Tuesday: Critical Flaws Haunt InDesign, ColdFusion

Software maker calls special attention to CVE-2023-29300, a deserialization of untrusted data bug with a CVSS severity score of 9.8/10.

Ryan NaraineJuly 11, 2023

Application Security

Exploit Code Published for Remote Root Flaw in VMware Logging Software

VMware confirmed that exploit code for CVE-2023-20864 has been published, underscoring the urgency for enterprise network admins to apply available patches.

Ryan NaraineJuly 10, 2023

Application Security

OWASP SwSec 5D Tool Provides SDLC Maturity Ratings, Aids Software Supply Chain

SwSec 5D framework aims to provide a roadmap for secure software development, and its use would help improve security in the software supply chain.

Kevin TownsendJuly 7, 2023

Application Security

Truebot Hackers Exploiting Netwrix Auditor Flaw: CISA, FBI Alert

Hackers linked to the Truebot malware are exploiting a year-old Netwrix Auditor flaw to break into organizations in the U.S. and Canada.

Ryan NaraineJuly 6, 2023

Page 8 of 122« First ‹ Previous 4 5 6 789 10 11 12 Next ›Last »

SECURITYWEEK NETWORK:

ICS:

Application Security

Endor Labs Raises $93 Million for AppSec Platform

Application Security

Miggo Security Banks $17M Series A for ADR Technology

Application Security

Open Source Security Firm Hopper Emerges From Stealth With $7.6M in Funding

Application Security

Insurance Firm Lemonade Says API Glitch Exposed Some Driver’s License Numbers

Application Security

GitHub Announces General Availability of Security Campaigns

Application Security

Compromised SpotBugs Token Led to GitHub Actions Supply Chain Hack

Application Security

GitHub Enterprise Server Gets New Security Capabilities

Application Security

Signs of Malware Attack Targeting Rust Developers Found on Crates.io

Application Security

Google Brings AI Magic to Fuzz Testing With Eye-Opening Results

Application Security

Patch Tuesday: Adobe Patches 30 Acrobat, Reader Vulns

Application Security

Apple Lists APIs That Developers Can Only Use for Good Reason

Application Security

The Good, the Bad and the Ugly of Generative AI

Application Security

10 Steps to Help Secure Your APIs

Application Security

API Flaw in QuickBlox Framework Exposed PII of Millions of Users

Application Security

Adobe Patch Tuesday: Critical Flaws Haunt InDesign, ColdFusion

Application Security

Exploit Code Published for Remote Root Flaw in VMware Logging Software

Application Security

OWASP SwSec 5D Tool Provides SDLC Maturity Ratings, Aids Software Supply Chain

Application Security

Truebot Hackers Exploiting Netwrix Auditor Flaw: CISA, FBI Alert

Featured

Data Breaches

5.5 Million Patients Affected by Data Breach at Yale New Haven Health

Cybercrime

Cyberattack Hits British Retailer Marks & Spencer

Data Breaches

Korean Telco Giant SK Telecom Hacked

Data Breaches

Microsoft Purges Dormant Azure Tenants, Rotates Keys to Prevent Repeat Nation-State Hack

Artificial Intelligence

The Shadow AI Surge: Study Finds 50% of Workers Use Unapproved AI Tools

Vulnerabilities

Fresh Windows NTLM Vulnerability Exploited in Attacks

Vulnerabilities

SonicWall Flags Old Vulnerability as Actively Exploited

Latest News

Management & Strategy

RSA Conference 2025 – Pre-Event Announcements Summary (Part 1)

Cybersecurity Funding

Jericho Security Gets $15 Million for AI-Powered Awareness Training

Data Breaches

Verizon DBIR Flags Major Patch Delays on VPNs, Edge Appliances

Cybersecurity Funding

Push Security Raises $30 Million in Series B Funding

Cybersecurity Funding

SecLytics Rebrands as Augur Security, Raises $7M in Seed Funding

Artificial Intelligence

AI-Powered Polymorphic Phishing Is Changing the Threat Landscape

Fraud & Identity Theft

FBI: Cybercrime Losses Surpassed $16.6 Billion in 2024

Daily Briefing Newsletter