Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
SAP releases patches for a total of 11 security flaws in NetWeaver, five of which are rated high-severity. [Read More]
Patch Tuesday takes on extra urgency this month with the news that at least six previously undocumented vulnerabilities are being actively exploited in the wild. [Read More]
Adobe's June batch of security patches address a swathe of potentially dangerous vulnerabilities in Adobe Acrobat and Reader, Adobe Photoshop, and the ever-present Adobe Creative Cloud Desktop Application. [Read More]
Navistar International Corporation confirms data stolen in cyberattack that affected some operations. [Read More]
The Open Source Insights project is aimed to provide developers with an overview of open source packages and their properties. [Read More]
Cisco issues fixes for a wide range of gaping security holes, including three high-risk vulnerabilities in the widely deployed Webex product line. [Read More]
The company offers an infrastructure-as-code security platform that can be integrated into the software development lifecycle. [Read More]
Ongoing, multi-vendor investigations into the SolarWinds mega-hack lead to the discovery of new malware artifacts that could be used in future supply chain attacks, including a poisoned update installer. [Read More]
A KPMG report finds that the email system used by Accellion never sent the email notifications to FTA customers and the company never informed them of the flaw being actively exploited. [Read More]
Kaspersky finds that financial threats diminished while ransomware operators upped their game with spam and calls to clients and partners. [Read More]
- 1 of 66
- ››
FEATURES, INSIGHTS // Application Security
CISOs are increasingly partnering with DevOps leaders and vigilantly modernizing secure development lifecycle (SDLC) processes to embrace new machine learning (ML) approaches.
The philosophy of integrating security practices within DevOps is obviously sensible, but by attaching a different label perhaps we are likely admitting that this “fusion” is more of an emulsification.
The ability to look deeply into user and system behavior and identify the smallest anomaly will become the essential toolkit to stem the tide of fraud and theft in financial services.
Retailers should ensure that they are proactively scanning for vulnerabilities in the website, as well as deploying a solution to monitor traffic.
Every piece of hardware, every integration, every API, every process, as well as applications themselves, are potential targets.
Applications have been deconstructed to the point where we need to think about them with a new level of abstraction to understand how security needs to evolve.
The best way for the security industry to meet the challenge of modern applications and modern app development is to adopt a modern way of supporting those from a security perspective.
ChatOps offers a bridge to a fully realized vision for DevSecOps, offering a much quicker path to resolution for both security and non-security issues.
If done right and integrated throughout the process, security ends up being not a source of friction, but a function that protects the business, at the speed of business.
With a holistic approach you can enable efficient segmentation across your infrastructure, identify anomalies faster by using process behavior deviations, and reduce your attack surface quickly.
- 1 of 10
- ››
Get the Daily Briefing
- Apple Reaffirms Privacy Stance Amid Trump Probe Revelations
- Volkswagen America Discloses Data Breach Impacting 3.3 Million
- Wray: FBI Frowns on Ransomware Payments Despite Recent Trend
- Recorded Future Unveils $20M Threat-Intel Investment Fund
- COO of Security Company Charged for Cyberattack on Medical Center
- RSA Spins Out Fraud and Risk Intelligence Unit as Standalone Company Outseer
- McDonald's Says Hackers Breached Data in Taiwan, South Korea
- GitHub Discloses Details of Easy-to-Exploit Linux Vulnerability
- Canada Privacy Watchdog Slams Police Use of Facial Recognition Tool
- Alibaba's Lazada Launches Public Bug Bounty Program
Copyright © 2021 Wired Business Media. All Rights Reserved. Privacy Policy