Application Security
Application Security news, information, and how-to advice
Nuance says NotPetya attack led to $92 million in lost revenue
Nuance Communications, a software company that offers speech and imaging technology to a number of markets, including healthcare and finance, said the 2017 NotPetya malware attacks caused the company to lose $92 million in revenue,...
What is SQL injection? This oldie but goodie can make your web applications hurt
SQL injection attacks are well-understood and easily preventable, and the priority for risk mitigation should be preventing SQL injection attacks in the first place. Listen to Little Bobby Tables and sanitize your database inputs.
5 tips to help you block ransomware
Learn about best practices to combat the threat of ransomware.
How Contrast Security protects applications from the inside out
Contrast Security has one of the most elegant solutions out there for application security. We can see why it scored 100 percent on the OWASP Security Benchmark.
Video/Webcast Sponsored
Digital Transformation and Modern App Factory
Join Forbes contributor and industry analyst Maribel Lopez, to see how market leaders are redesigning their existing apps and processes for a mobile, cloud-native world. She discusses how a Modern App Factory speeds both development
Endpoint security suites must have these features
Endpoint security vendors must be a one-stop endpoint security shop -- providing such things as anti-malware, anti-exploit, EDR and hybrid deployment options -- if they want to compete.
The life and death of a document: where did it really go?
As the Moody Blues would say, what became of that letter you never meant to send?
A patch in time saved nine
In today’s Windows environment, things are changing, and the old cliches may no longer be true.
The 17 biggest data breaches of the 21st century
Security practitioners weigh in on the 17 worst data breaches in recent memory.
White Paper
Software-centric, Application-aware Networking is Part of the Enterprise Digital Transformation - Research Report by Ovum
This report from Ovum Research highlights the emergence of software-centric and application-aware network services, hybrid IT architectures and cloud services, and their impact on the complexity of managing application performance in
How devsecops protects appsec from the cybersecurity skills gap
DevSecOps may not be a 100% solution for cybersecurity skills shortage, but it can make it less of a concern in the AppSec realm.
OnePlus says up to 40,000 customers affected by credit card breach
OnePlus, the company behind a popular line of Android devices, said on Friday that up to 40,000 customers might be at risk after a malicious script compromised payment card data during the checkout process.
Rating software security Consumer Reports-style
The Cyber Independent Testing Lab (CITL) is fuzzing binaries at scale and building a checklist of compile-time security best practices.
5 steps to boost your application security testing ROI
Even in the era of AI hype, spending more does not necessarily means spending wiser.
White Paper
A Practitioner's Guide to Enterprise Application Modernization
Skytap Cloud makes modernizing legacy applications and infrastructures a manageable and achievable initiative. Application modernization is imperative for enterprises that are running mission-critical workloads on legacy applications.
Email security in 2018
Things are going to get even crazier...
The battle to secure the digital environment
A true, multi-faceted digital risk management program takes a proactive approach to cleaning up corporate websites, while securing the corporate risk posture and protecting customers.
In the aftermath of yet another Meltdown, no secrets are safe
Meltdown and Spectre reveal that perfect information protection comes at an increasingly steep cost.
What is DevSecOps? Developing more secure applications
DevSecOps is about introducing security earlier in the life cycle of application development, thus minimizing vulnerabilities and bringing security closer to IT and business objectives.
White Paper
Bimodal IT is Not an Excuse for Inaction: Modernizing Traditional Applications
Organizations that view bimodal IT as an excuse to stay static and not modernize their traditional applications are lulling themselves into a false sense of security. Our guide, 'Bimodal IT is Not an Excuse for Inaction: Modernizing
For strong API security, you need a program not a piecemeal approach
When designed and managed properly, APIs can be less problematic than traditional integration methods and can actually increase an organization's security posture.
Spectre and Meltdown: What you need to know going forward
As you've likely heard by now, there are some problems with Intel, AMD, and ARM processors. Called Meltdown and Spectre, the discovered attack possibilities are rather severe, as they impact pretty much every technical device on the...
Awareness training has failed us
And if awareness isn’t enough, is it time to look at our problems in a new way?
Application security is maturing, but independent testing is crucial
Skills shortage is making shift to continuous appsec testing challenging.
Sponsored Links