Application Security Category - Security Boulevard

‘China’ Azure Breach: MUCH Worse Than Microsoft Said

Richi Jennings — Mon, 24 Jul 2023 17:03:58 +0000

Storm-0558 Breaks: Satya and Pooh, sitting in a tree, K.I.S.S.I.N.G.

The post ‘China’ Azure Breach: MUCH Worse Than Microsoft Said appeared first on Security Boulevard.

2023 OWASP Top-10 Series: Introduction

wlrmblog — Sat, 22 Jul 2023 13:45:00 +0000

In early June 2023, OWASP released the final version of the OWASP API Security Top-10 list update. At that time we published a “hot take” on this final version and followed that up with an in-depth look at the new risk ratings for 2023. Today we’re kicking off a multi-post series in which we take [...]

The post 2023 OWASP Top-10 Series: Introduction appeared first on Wallarm.

The post 2023 OWASP Top-10 Series: Introduction appeared first on Security Boulevard.

GitHub Developers Targeted by North Korea’s Lazarus Group

Jeffrey Burt — Fri, 21 Jul 2023 19:51:33 +0000

The Lazarus Group is behind a social engineering campaign that uses repository invitations and malicious npm packages to target developers on GitHub.

The post GitHub Developers Targeted by North Korea’s Lazarus Group appeared first on Security Boulevard.

R.I.P. Kevin Mitnick, 1963–2023

Richi Jennings — Fri, 21 Jul 2023 13:33:00 +0000

Kevin is Free: Hackers’ hacker dies, aged 59.

The post R.I.P. Kevin Mitnick, 1963–2023 appeared first on Security Boulevard.

Cyber Resilience Act: The Future of Software in the European Union

Aaron Linskens — Thu, 20 Jul 2023 20:16:42 +0000

Representatives of member states of the European Union (EU) reached a common agreement yesterday regarding the proposed Cyber Resilience Act (CRA).

The post Cyber Resilience Act: The Future of Software in the European Union appeared first on Security Boulevard.

Why Generative AI is a Threat to API Security

Bill Doerrfeld — Thu, 20 Jul 2023 12:00:28 +0000

Generative AI can be used to amplify cybercriminals' nefarious deeds against web applications, especially those that rely heavily on APIs.

The post Why Generative AI is a Threat to API Security appeared first on Security Boulevard.

Biden Admin. Adds ‘Mercenary Spyware’ Firms to Ban List

Richi Jennings — Wed, 19 Jul 2023 16:15:57 +0000

European cousins Intellexa and Cytrox essentially banned by Commerce Dept. — Predator/ALIEN not welcome in U.S.

The post Biden Admin. Adds ‘Mercenary Spyware’ Firms to Ban List appeared first on Security Boulevard.

Safe programming languages: A solid first step

Michael Mehlberg — Wed, 19 Jul 2023 14:59:38 +0000

The post Safe programming languages: A solid first step appeared first on Security Boulevard.

ChatGPT Provides Limited Help Identifying Malware

Michael Vizard — Wed, 19 Jul 2023 13:00:39 +0000

Current LLM-based tech like ChatGPT can accurately classify malware risk in only 5% of cases—and they may never be able to recognize novel approaches used to create malware.

The post ChatGPT Provides Limited Help Identifying Malware appeared first on Security Boulevard.

Open Source Security Incidents and How Organizations Can Respond

rezilion — Wed, 19 Jul 2023 08:00:19 +0000

Attacks that leverage vulnerabilities in open source software are on the rise. How security teams respond to these incidents is key to what impact they will ultimately have. Oftentimes the attacks stemming from open source vulnerabilities are unpredictable, making them a big challenge for teams. Despite all the steps a security team takes to defend ... Open Source Security Incidents and How Organizations Can Respond

The post Open Source Security Incidents and How Organizations Can Respond appeared first on Rezilion.

The post Open Source Security Incidents and How Organizations Can Respond appeared first on Security Boulevard.