Application Security

January 29, 2021
Published by Bradley Barth at January 29, 2021
Categories

As SolarWinds spooks tech firms into rechecking code, some won’t like what they find

If more attacks are uncovered, end-user organizations must apply lessons learned from SolarWinds and take decisive action.

The post As SolarWinds spooks tech firms into rechecking code, some won’t like what they find appeared first on SC Media.

Do you like it?0
Read more
January 21, 2021
Published by Joe Uchill at January 21, 2021
Categories

70% of apps for the manufacturing sector spent all of 2020 with at least one security flaw

With public administration apps, the number that went a year with an unpatched security flaw dropped to 67 percent, and nine other sectors ranged between 50 and 60 percent, according to research from WhiteHat Security.

The post 70% of apps for the manufacturing sector spent all of 2020 with at least one security flaw appeared first on SC Media.

Do you like it?0
Read more
January 20, 2021
Published by Derek B. Johnson at January 20, 2021
Categories

Reliance on cloud, APIs create confusion and introduce risk into software development

Businesses are increasingly hosting their applications in public or private clouds while using APIs to speed up the development process. Both shifts come with security implications.

The post Reliance on cloud, APIs create confusion and introduce risk into software development appeared first on SC Media.

Do you like it?0
Read more
January 13, 2021
Published by Bradley Barth at January 13, 2021
Categories

Sunspot malware scoured servers for SolarWinds builds that it could weaponize

Software company says 2 customer inquires, in hindsight, appear linked to supply-chain attack

The post Sunspot malware scoured servers for SolarWinds builds that it could weaponize appeared first on SC Media.

Do you like it?0
Read more
January 13, 2021
Published by Joe Uchill at January 13, 2021
Categories

Perils of coding errors play out in Parler slip up

Applied to internet applications in general, the IDOR problems that led to the Parler exposure could extend to anything stored sequentially and not secured individually — receipts, posts, and in many instances entire accounts.

The post Perils of coding errors play out in Parler slip up appeared first on SC Media.

Do you like it?0
Read more
January 12, 2021
Published by Bradley Barth at January 12, 2021
Categories

‘I’ll Teams you’: Employees assume security of links, file sharing via Microsoft comms platform

In theory they know better. But Users naïvely trust workplace communications platforms, despite phishing and impersonation threats.

The post ‘I’ll Teams you’: Employees assume security of links, file sharing via Microsoft comms platform appeared first on SC Media.

Do you like it?0
Read more