Hot Topics

Application Security

API Skyhawk Security modeling threat CosmicStrand insider threats Threat Modeling - Secure Coding - Cybersecurity - Security

Why Generative AI is a Threat to API Security

| | API security, Application Security, AppSec, generative AI, web app security
Generative AI can be used to amplify cybercriminals' nefarious deeds against web applications, especially those that rely heavily on APIs ...
Security Boulevard
Safe programming languages: A solid first step

Safe programming languages: A solid first step

| | Application Security, Dev & DevSecOps
...
ReversingLabs Blog
Hacker

Is Microsoft Putting Their Customers on the Front Line of Cyber War?

| | API security, Application Security, Cybersecurity
The recent cyber-attack by China isn’t the first time Microsoft 365 has been breached. Microsoft’s insecure environment and “you’re on your own” attitude toward customers shows a willingness to put us all ...
Signal Hill Technologies

Why Developers Need a Security Mindset (And How to Help Them With It)

| | Application Security, DevSecOps, Uncategorized, Vulnerability Management
It’s never been a more important time for developers to have a security mindset. Software developers are increasingly relying on open source components in their products. While this makes their jobs somewhat ...
Rezilion
Technology leadership discussing securing third-party APIs

Securing Third-Party APIs: What You Need to Know

| | API security, Application Security, Cybersecurity
API attacks are on the rise. Learn about the business risks and best practices to secure third-party APIs. The post Securing Third-Party APIs: What You Need to Know appeared first on Signal ...
Signal Hill Technologies
blert - crowspiracy

EU-US data transfers back in hotseat: Security of user data adds to privacy concerns

| | Application Security, Secure Software Blogwatch, software supply chain security
The Europeans say a new agreement with the U.S. means it’s OK to transfer data westwards again. Two previous decisions had been struck down by the EU’s judicial branch, due to the risk ...
ReversingLabs Blog

The Battle Against Business Logic Attacks: Why Traditional Security Tools Fall Short

| | Application Security, BLA, Business Logic Attack
As the digital landscape continues to evolve, so do the tactics utilized by bad actors that are seeking to exploit application vulnerabilities. Among the most insidious types of attacks are business logic ...
Blog

Imperva Offers New Features to Simplify PCI DSS Compliance

| | Application Security, Client-Side Protection, Compliance, Magecart Attacks
The Silent Threat of Client-Side Attacks As more transactions move online, a silent threat is lurking in the deepest, darkest shadows of websites, threatening to steal your sensitive data. This rapidly evolving ...
Blog
Third-party risk management survey: Prioritize end-to-end software supply chain security — or fail

Third-party risk management survey: Prioritize end-to-end software supply chain security — or fail

| | Application Security, software supply chain security
Awareness of the risks posed by third-party vendors is high among organizations across industries, but visibility into those webs of business connections remains low, a survey released by a provider of third-party ...
ReversingLabs Blog
software, engineering, OWASP, organizations, appsec, AppSec Salt Security API security rise GitOps Finite State API APIs tokenization

AppSecCon 2023 is Now On Demand

| | Application Security, AppSec, AppSecCon, ArmorCode
Check out AppSecCon 2023 on demand and explore software security’s top challenges, best practices and case studies ...
Security Boulevard
Load more