Application Security news stories

Software applications have been a key tool for businesses for decades, but the way they are designed and operated has changed during the past few years.

Mitigation and recovery are vital to ensuring brand reputation remains solid in the face of a Distributed Denial of Service (DDoS) attack and that business growth and innovation can continue.

"No solution uses full-stack application runtime analysis and dynamic inventory discovery to support the challenges around vendor management."

Australia’s recent budget ushers in the nation’s ‘biggest ever’ cybersecurity spend and, likely also, massive demand for cybersecurity jobs.

Checkmarx is expanding its cloud-based application security testing platform to A/NZ to help developers in the region secure their application coding.

SaaS management tools typically cater to the business side or the security posture management side, but each side is still prone to visibility gaps and information siloes.

Attacks on business-critical applications can exploit administrator privileges, which can then be used to bypass application controls and compromise data and processes.

"We’ve seen how cybercriminals are spreading malicious files through the ad blocks in such apps, and it’s putting the users at risk."

The average time to remediate the most severe vulnerabilities in an organisation’s IT infrastructure has now reached 256 days.

"Nearly everything we do on the network involves applications, from web browsing and chat to mobile games and services that allow us to get work done."

According to a multi-source report, state-affiliated threat actors attributed to 57% of all known web application incidents over the last five years.

Researchers highlight a significant gap in open-source security, with 80% of third-party libraries never getting updated by developers.

Developing secure software has become an imperative over the past year as organisations have rapidly adopted and embraced new ways of doing business digitally.”

Check Point Research has identified four new security vulnerabilities in the Microsoft Office suite.

Just 3% of organidations have real-time visibility into runtime vulnerabilities, as multicloud environments, Kubernetes, and DevSecOps drive digital transformation.

More needs to be done to protect against application security threats, particularly newer threats like bot attacks, API attacks, and supply chain attacks. 

The next generation of its high-assurance PKI, Entrust PKIaaS, is designed to be secure, quick to deploy, scale on-demand, and run in the cloud.

Selecting an application delivery solution that maximises automation and integrates into an existing DevOps environment is critical, writes Radware senior security solutions architect for APAC Yaniv Hoffman.

"The state of application security remains very concerning."

AppDynamics, part of Cisco, has released Cisco Secure Application, a solution designed to simplify vulnerability management, defend against cyber attacks and protect applications.

New simplified subscription plans and security services have been designed to make it easier for businesses to protect critical assets from a growing volume of complex and automated threats.

Dynatrace is pushing further into the cloud application security space this month, as the company launches a new module as part of its offering across the Software Intelligence Platform.

“Application security is an invaluable part of the Cloud One platform, integrating technology to provide superior protection for customers deploying applications wherever it makes the most sense for them."

GitHub has recently rolled out code scanning to help developers detect and prevent vulnerabilities from popping up in their open source and enterprise code.