Application Security stories

Attacks on business-critical applications can exploit administrator privileges, which can then be used to bypass application controls and compromise data and processes. >>

"We’ve seen how cybercriminals are spreading malicious files through the ad blocks in such apps, and it’s putting the users at risk.">>

The average time to remediate the most severe vulnerabilities in an organisation’s IT infrastructure has now reached 256 days.>>

"Nearly everything we do on the network involves applications, from web browsing and chat to mobile games and services that allow us to get work done.">>

According to a multi-source report, state-affiliated threat actors attributed to 57% of all known web application incidents over the last five years.>>

Researchers highlight a significant gap in open-source security, with 80% of third-party libraries never getting updated by developers.>>

Check Point Research has identified four new security vulnerabilities in the Microsoft Office suite.>>

Developing secure software has become an imperative over the past year as organisations have rapidly adopted and embraced new ways of doing business digitally.”>>

Just 3% of organidations have real-time visibility into runtime vulnerabilities, as multicloud environments, Kubernetes, and DevSecOps drive digital transformation.>>

More needs to be done to protect against application security threats, particularly newer threats like bot attacks, API attacks, and supply chain attacks. >>

The next generation of its high-assurance PKI, Entrust PKIaaS, is designed to be secure, quick to deploy, scale on-demand, and run in the cloud.>>

Selecting an application delivery solution that maximises automation and integrates into an existing DevOps environment is critical, writes Radware senior security solutions architect for APAC Yaniv Hoffman.>>

"The state of application security remains very concerning.">>

AppDynamics, part of Cisco, has released Cisco Secure Application, a solution designed to simplify vulnerability management, defend against cyber attacks and protect applications.>>

New simplified subscription plans and security services have been designed to make it easier for businesses to protect critical assets from a growing volume of complex and automated threats.>>

Dynatrace is pushing further into the cloud application security space this month, as the company launches a new module as part of its offering across the Software Intelligence Platform.>>

“Application security is an invaluable part of the Cloud One platform, integrating technology to provide superior protection for customers deploying applications wherever it makes the most sense for them.">>

GitHub has recently rolled out code scanning to help developers detect and prevent vulnerabilities from popping up in their open source and enterprise code.>>

The Welcome Chat espionage app belongs to a known Android malware family and shares infrastructure with a previously documented espionage campaign named BadPatch, which also targeted the Middle East.>>

Two major financial institutions in New Zealand have refreshed their application security measures with the help of security specialist Checkmarx.>>

"Through these vulnerabilities, hackers can obtain usernames, account balances, transfer confirmations, card limits, and the phone number associated with a victim's card.”>>

“Imperva is an exciting addition ... they provide leading solutions for enterprise data security, web application, BOT protection, and CDN markets.”>>

“Our customers will never be 100% cloud, they’ll always be on premise to some degree. The struggle is, how can we do both?”>>

On average, enterprises are using 1,427 distinct cloud services, with the typical employee using 36 different cloud applications during their working day.>>