Americas

  • United States

Asia

Europe

Oceania

Popular Topics

Topics

About

Policies

Our Network

More

HomeApplication Security

Application Security

Application Security | News, how-tos, features, reviews, and videos

Jump to
Latest Articles Events Resources Podcasts
news
Image

Google expands minimum security guidelines for third-party vendors

Google's updated Minimum Viable Secure Product (MVSP) program offers advice for working with researchers and warns against vendors charging extra for basic security features.

By John P. Mello Jr.
Dec 08, 20234 mins
Application SecuritySupply Chain
news
Image

BSIMM 14 finds rapid growth in automated security technology

By John P. Mello Jr.
Dec 06, 20234 mins
Application SecurityNetwork Security
feature
Image

What should be in a company-wide policy on low-code/no-code development

By Ericka Chickowski
Dec 06, 202315 mins
Application SecuritySecurity Practices
feature

The CSO guide to top security conferences

By CSO Staff
Dec 01, 20236 mins
Technology IndustryIT SkillsEvents
brandpostSponsored by Wing Security

This new SaaS security solution aims to disrupt the market with its ‘freemium’ approach

By Wing Security
Nov 06, 20235 mins
Application Security
news

Microsoft pledges cybersecurity overhaul to protect products and services

By Michael Hill
Nov 02, 20239 mins
Internet SecurityApplication SecurityNetwork Security
news

BackSlash’s new ASPM combines existing AppSec with context-based risk prioritization

By Shweta Sharma
Nov 01, 20233 mins
Application Security
news

Failure to verify OAuth tokens enables account takeover on websites

By Lucian Constantin
Oct 27, 20237 mins
AuthenticationApplication SecuritySecurity Practices
feature

6 most common types of software supply chain attacks explained

By Ax Sharma
Oct 25, 202315 mins
CyberattacksSupply ChainApplication Security

Articles

news

Google Workspace to gain AI-enabled security, digital sovereignty controls

The enhancements are designed to better protect sensitive data, harden admin access controls, and provide more flexibility on where data is stored and processed.

By Michael Nadeau
Aug 23, 2023 6 mins
Email SecurityGenerative AIApplication Security
news

Container security probes provide continuous penetration testing

Active security for containerized systems is here, as Prelude Security launches new, tiny testing agents.

By Jon Gold
Aug 23, 2023 3 mins
DevSecOpsApplication Security
news

Customer-configured rules now the biggest contributor to mitigated traffic

New research also shows old CVEs are still exploited en masse with HTTP anomalies the most common API attack vector.

By Michael Hill
Aug 22, 2023 3 mins
APIsApplication SecurityVulnerabilities
news

The top new cybersecurity products at Black Hat USA 2023

Here are the top cybersecurity tools, platforms, capabilities, services, and technologies launched at Black Hat USA 2023 that you need to know about.

By Shweta Sharma
Aug 09, 2023 8 mins
Email SecurityThreat and Vulnerability ManagementApplication Security
news

Code42’s Incydr identifies source and destination of source code

The SaaS solution has been updated to better detect propriety source code movement.

By Samira Sarraf
Aug 08, 2023 3 mins
DevSecOpsDevSecOpsApplication Security
news

Akamai unveils API Security solution to stop API attacks, detect abuse

The solution works with any API gateway, WAAP, or cloud implementation and features a managed threat hunting service.

By Michael Hill
Aug 02, 2023 3 mins
Threat and Vulnerability ManagementApplication SecurityAPIs
news

Vast majority of organizations are no longer vulnerable to MOVEit

Organizations are remediating MOVEit vulnerabilities 21 times faster compared to other vulnerabilities, according to research by Bitsight.

By Apurva Venkat
Jul 24, 2023 4 mins
Application SecurityVulnerabilities
feature

Why API attacks are increasing and how to avoid them

Growing use of APIs give attackers more ways to break authentication controls, exfiltrate data, or perform disruptive acts.

By Maria Korolov
Jul 24, 2023 20 mins
Application SecurityData and Information SecurityVulnerabilities
news

Chainguard adds automated SBOMs, vulnerability scanning to Enforce

With the added features, Enforce can now generate and ingest software bills of materials for container images, automate vulnerability scans and generate reports.

By Shweta Sharma
Jul 19, 2023 3 mins
Application Security
news

JFrog adds new DevOps capability for vetting external packages

JFrog Curation vets and blocks infected open source or third-party packages before they enter development.

By Shweta Sharma
Jul 12, 2023 3 mins
Application SecurityDevops
news

Evolving web applications raise security concerns, push budgets

OPSWAT study found about three-fourths of organizations pushing their security budgets over evolving applications with unsecured infrastructure.

By Shweta Sharma
Jul 12, 2023 3 mins
CSO and CISOApplication Security
news analysis

Most popular generative AI projects on GitHub are the least secure

Researchers use the OpenSSF Scorecard to measure the security of the 50 most popular generative AI large language model projects on GitHub.

By Michael Hill
Jun 28, 2023 5 mins
Generative AIApplication SecurityOpen Source
View all

Resources

whitepaper

Unified Security from Code to Cloud for Financial Services

Reduce risk, improve visibility, and take action
with end-to-end application security powered
by Aqua and AWS

The post Unified Security from Code to Cloud for Financial Services appeared first on Whitepaper Repository.

By AWS and Aqua
28 Nov 2023
Application Performance ManagementApplication SecuritySecurity
Image
whitepaper

State of Code Security: The AppSec Maturity Marathon Infographic

By OpenText
24 Oct 2023
Application SecurityBusiness OperationsCloud Security
Image
whitepaper

State of Code Security: The AppSec Maturity Marathon

By OpenText
24 Oct 2023
Application SecurityBusiness OperationsSecurity
Image
View all

Podcasts

Image
podcastsSponsored by Veracode

A Hard Look at Software Security

In Season 2 of our podcast series, we'll discuss the implications and mandates generated by Veracode's most recent State of Software Security report. Our industry experts will pick up from Season 1's highlights to take a closer look at application security today. Listeners will learn more about: The impact security debt is having across industries The changing attitudes and priorities put around application security How the average number of days to fix software flaws has almost tripled since the last report The case for scanning early and often

0 episode
Application Security

Video on demand

video

What's ahead for cybersecurity in 2019: TECH(talk)

J.M. Porup, senior writer at CSO online, joins Juliet on this week’s episode of TECH(talk) to discuss trends in ransomware, IoT security and enterprise cybersecurity roles.

Feb 01, 2019 25 mins
RansomwareTechnology IndustryCyberattacks
See all videos

Explore a topic

Show me more

news analysis

LogoFAIL attack can inject malware in the firmware of many computers

By Lucian Constantin
Dec 08, 20238 mins
MalwareMalwareCybercrime
Image
news

New CISO appointments 2023

By CSO Staff
Dec 08, 202328 mins
CSO and CISOCareersSecurity
Image
news

Top cybersecurity product news of the week

By CSO staff
Dec 07, 202322 mins
Generative AISecurity
Image
podcast

CSO Executive Sessions Australia with Sunil Sale, CISO at MinterEllison

Nov 20, 202315 mins
CSO and CISO
Image
podcast

CSO Executive Sessions Australia with Robbie Whittome, CISO at Curtin University

Oct 16, 202315 mins
CSO and CISO
Image
podcast

CSO Executive Sessions / ASEAN: Cisco's Anthony Grieco on opportunities in Southeast Asia's cybersecurity landscape

Oct 10, 202316 mins
CSO and CISO
Image
video

CSO Executive Sessions Australia with Sunil Sale, CISO at MinterEllison

Nov 20, 202315 mins
CSO and CISO
Image
video

AI and Cybersecurity: Speed Bumps, Training, and Communication

Nov 06, 202317 mins
CyberattacksGenerative AI
Image
video

CSO Executive Sessions Australia with Robbie Whittome

Oct 16, 202315 mins
CSO and CISO
Image