Category: Application security

Application security, Security

A flaw in Facebook Messenger could have allowed spying on users

November 20, 2020

Via: Security Affairs

Facebook has addressed a major security issue in its Messenger for Android app that could have allowed threat actors to spy on users by placing and connecting Messenger audio calls without their interaction. The vulnerability was discovered by white-hat hacker […]

Application security, Security

4 steps to DevSecOps in your software supply chain

November 11, 2020

Via: InfoWorld

Developers often want to do the “right” thing when it comes to security, but they don’t always know what that is. In order to help developers continue to move quickly, while achieving better security outcomes, organizations are turning to DevSecOps. […]

Application security, Mobile, Mobile security, Security

Apple Fixes iOS Zero Day Flaws Found by Google

November 6, 2020

Via: DataBreach Today

Apple issued an update for iOS and iPadOS on Thursday that fixes three zero-day flaws found by Google’s Project Zero bug-hunting team and a range of other security-related flaws. All three of the bugs found by Project Zero are being […]

Application security, Security

4 Approaches to Securing Containerized Applications

October 21, 2020

Via: Radware Blog

As more and more enterprises are on the journey towards adopting containers running microservices, they are also scratching their heads trying to figure out which is the right way to secure these ecosystems. Radware’s Web Application Security Report suggests that […]

Application security, Mobile, Mobile security, Security

Beware: New Android Spyware Found Posing as Telegram and Threema Apps

October 1, 2020

Via: The Hacker News

A hacking group known for its attacks in the Middle East, at least since 2017, has recently been found impersonating legitimate messaging apps such as Telegram and Threema to infect Android devices with a new, previously undocumented malware. “Compared to […]

Application security, Cloud security, Security

Application Security in Today’s Multi-Cloud World

September 29, 2020

Via: Radware Blog

Managing applications in heterogeneous cloud environments introduces new challenges for IT, DevOps and application owners. One of these challenges of is that each environment offers different capabilities, resulting in inconsistent management and deployment of application delivery and security services, policies […]

Application security, Security

The state of application security: What the statistics tell us

August 13, 2020

Via: CSO Online

The emergence of the DevOps culture over the past several years has fundamentally changed software development, allowing companies to push code faster and to automatically scale the infrastructure needed to support new features and innovations. The increased push toward DevSecOps, […]

Application security, Security, Threats & Malware, Vulnerabilities

Snapdragon Chip Flaws Could Facilitate Mass Android Spying

August 11, 2020

Via: DataBreach Today

Heads-up on the existence of a serious security problem affecting many Android devices for which no fix is yet available, short of ditching any vulnerable gear. Researchers at Check Point Software Technologies have counted 400 flaws in Qualcomm’s Digital Signal […]

Application security, Security

TeamViewer flaw could be exploited to crack users’ password

August 6, 2020

Via: Help Net Security

A high-risk vulnerability (CVE-2020-13699) in TeamViewer for Windows could be exploited by remote attackers to crack users’ password and, consequently, lead to further system exploitation. About TeamViewer TeamViewer is an application developed by German company TeamViewer GmbH and is available […]

Application security, Security

9 container security tools, and why you need them

August 4, 2020

Via: CSO Online

The advent of containers has changed not only how applications are deployed, but how IT shops do their daily business. Containers offer many well-documented benefits that span the full breadth of a modern IT department and the full lifecycle of […]