Security News

Check in here for all the late-breaking AppSec news, including details about new vulnerabilities and recent breaches.

Beyond Tor: Examining the Uncharted Corners of the Dark Web

bebrown's picture
By Benjamin Brown February 13, 2019

Discussions about the darknet or dark web are typically centered around the Tor network, and the data from breaches, password dumps, and hacked emails that can be found there. There is little focus or discussion about the other extant darknet frameworks, and the fact that the dark web is actually comprised of multiple networks designed for specific underground activity. While Europol reports and... READ MORE

Veracode Channel Leader Leslie Bois Earns Top Channel Recognition from CRN

pdaly's picture
By Pete Daly February 11, 2019  | Security News

Leslie Bois, Veracode’s Vice President of Global Channel and Alliances, has been selected to the prestigious CRN 2019 Channel Chiefs list. Bois earned the industry recognition for the second consecutive year, a reflection of the growth and influence she has introduced since joining Veracode in 2017. Bois is responsible for developing and executing Veracode’s global strategy to build a strong... READ MORE

Ohio Senate Bill 220 Incentivizes Businesses to Maintain Higher Levels of Cybersecurity

lpaine's picture
By Laura Paine February 6, 2019

In the last two years alone, there has been a number of high-profile breaches that have given organizations pause, asking them to consider whether the same kind of event could happen to them. After all, a cybersecurity breach could seriously damage or even level your business if you’re not prepared and do not have the appropriate security programs in place. We’ve seen the implementation of the... READ MORE

Unchecked open source components introducing more risk to businesses

pdaly's picture
By Pete Daly January 31, 2019  | Research

At Veracode, we’ve been the first and the loudest in proclaiming that companies need to be vigilant in how they use open source components in their software. Our research shows that open source components are used with increasing regularity in the enterprise. The State of Software Security Volume 9 report, which examined 700,000 scans over 12 months, found that 87.5 percent of Java applications... READ MORE

World Economic Forum Recognizes Cyberattacks in Top Risks for 2019

vlattell's picture
By Valerie Lattell January 28, 2019
Highlights from WEF Global Risks Report

The World Economic Forum (WEF) recently released The Global Risks Report 2019, ranking threats to cybersecurity among the top five risks facing society in the near future. The report presents the results of the WEF’s most recent Global Risks Perception Survey of nearly 1,000 respondents, and identifies challenges to consider for the year ahead, as well as potential future threats down the road.... READ MORE

PCI Releases Software Security Framework

boshea's picture
By Brittany O'Shea January 18, 2019
Get details on PCI's new software security standard

Today, PCI shared its new Software Security Framework. PCI describes this framework as “a collection of software security standards and associated validation and listing programs for the secure design, development and maintenance of modern payment software.” The framework includes two standards for use by software vendors. The first, the Secure Software Standard, is a software security standard... READ MORE

The Top Cybersecurity Breaches of 2018

lpaine's picture
By Laura Paine January 14, 2019

The past year was a wild ride on many fronts, and it included some of the biggest data breaches we’ve seen in recent history. According to a report from Business Insider, some of the biggest victims in 2018 were T-Mobile, Quora, and Orbitz. Millions of people around the world were left vulnerable, as hackers accessed and stole their personal information – which in some cases included passport... READ MORE

Marriott Confirms Less Than 383 Million Unique Guests Affected in Starwood Data Breach

lpaine's picture
By Laura Paine January 7, 2019

Marriott has confirmed that the number of guests affected in the breach of Starwood’s guest reservation database is down from the originally estimated 500 million to “fewer than 383 million unique guests.” At this time, the hotel giant is unable to confirm an exact number of guests impacted. According to the statement, approximately 5.25 million unique unencrypted passport numbers and 20.3... READ MORE

Hackers Exploit Known Google Chromecast Vulnerability in Thousands of Devices

lpaine's picture
By Laura Paine January 3, 2019

Starting the New Year off with a bang, Hacker Giraffe and J3ws3r reportedly exploited a vulnerability in thousands of Google Chromecast streaming devices. The CastHack bug, allegedly disclosed nearly five years ago, enabled the hackers to remotely access thousands of the streaming devices, causing them to show a pop-up notice on connected TVs alerting users that their misconfigured router is... READ MORE

Carnegie Mellon’s Software Engineering Institute Report Shows Efficacy of Static Application Security Testing

lpaine's picture
By Laura Paine December 21, 2018

A new report from Carnegie Mellon University’s Software Engineering Institute shows that automated, integrated Static Analysis improves software quality, reduces development time, and makes software more reliable and secure. By incorporating application security testing throughout the entirety of the Software Development Lifecycle (SDLC), organizations are able to ensure the security and quality... READ MORE

Love to learn about Application Security?

Get all the latest news, tips and articles delivered right to your inbox.

 

 

 

contact menu