Category: Application security

Application security, Security

Picking the right focus for web application security testing

October 9, 2018

Via: Computer Weekly

In a perfect world, you would have the time and the money needed to test all of your software for security flaws. From websites to enterprise applications to the cloud and everything in between, you would know exactly where things […]

Application security, Vulnerabilities

Your Web Applications Are More Vulnerable Than You Think

September 25, 2018

Via: Security Intelligence

A recent study shined a light on an attack vector that is often overlooked: the insecurity of web applications. According to the report, issued by Positive Technologies, 44 percent of web applications are vulnerable to data leakage and security problems. […]

Application security

Firefox DoS issue crashes the browser and sometimes the Windows OS

September 24, 2018

Via: Security Affairs

A security researcher discovered a bug affecting Firefox on Mac, Linux, and Windows that could crash the browser and in some cases the underlying OS. The security researcher Sabri Haddouche from Wire discovered a bug that affects Firefox on Mac, […]

Application security, Privacy protection

A bug in Twitter Account Activity API exposed users messages to wrong developers

September 24, 2018

Via: Security Affairs

A bug in Twitter Account Activity API has exposed some users’ direct messages (DMs) and protected tweets to unauthorized third-party app developers. “We recently published a notice about a bug related to our Account Activity API that could have resulted […]

Application security, Security

Qualys Community Edition: Discover IT assets, manage vulnerabilities, scan web apps

September 6, 2018

Via: Help Net Security

In this podcast recorded at Black Hat USA 2018, Anthony Mogannam, Product Manager, SME/SMB Solutions at Qualys, talks about issues related to open source software and Qualys Community Edition. Here’s a transcript of the podcast for your convenience. Hello everybody, […]

Application security, Security

Security Think Tank: How to manage software vulnerabilities

September 6, 2018

Via: Computer Weekly

Software vulnerabilities continue to be discovered on a daily basis, and it can often be a race against the hacker to apply relevant updates and remediate a vulnerability before the weakness is exploited. This is particularly the case for zero-day […]

Application security, Mobile security

WhatsApp urges Android users to manually backup their chats

August 21, 2018

Via: Naked Security

The good news for Android users: WhatsApp chats, photos, and videos are no longer going to eat into your precious Google Drive storage limit. Starting 12 November, your quota won’t budge due to that particular backup bucket. The catch: if […]

Application security

Fast or Secure DevOps – You No Longer Need to Choose

August 17, 2018

Via: Aberdeen

DevOps tooling such as Chef, Puppet and Ansible ushered in a whole new era of optimization. Doing more with less, doing it more efficiently and empowering faster innovation has become the mainstay within DevOps. The drum beats loudly, and the […]

Application security, Cloud security, Network security

Expect API Breaches to Accelerate

August 8, 2018

Via: Dark Reading

APIs provide the digital glue that binds apps, cloud resources, app services and data altogether – and they’re increasingly an appsec security threat. Last year the category of underprotected APIs cracked the OWASP Top 10 list for the first time. […]

Application security, Network security

Researchers show how to manipulate road navigation systems with low-cost devices

July 17, 2018

Via: Security Affairs

Researchers have developed a tool that poses as GPS satellites to deceive nearby GPS receivers. The kit could be used to deceive receivers used by navigation systems and suggest drivers the wrong direction. “we explore the feasibility of a stealthy […]