Category Archives: Application Security

As SolarWinds spooks tech firms into rechecking code, some won’t like what they find

Posted on January 29, 2021 by Bradley Barth

If more attacks are uncovered, end-user organizations must apply lessons learned from SolarWinds and take decisive action.

The post As SolarWinds spooks tech firms into rechecking code, some won’t like what they find appeared first on SC Media.

Continue reading

Posted in Application Security, Featured, Network Security, Security News, Security strategy | Comments Off on As SolarWinds spooks tech firms into rechecking code, some won’t like what they find

70% of apps for the manufacturing sector spent all of 2020 with at least one security flaw

Posted on January 21, 2021 by Joe Uchill

With public administration apps, the number that went a year with an unpatched security flaw dropped to 67 percent, and nine other sectors ranged between 50 and 60 percent, according to research from WhiteHat Security.

The post 70% of apps for the manufacturing sector spent all of 2020 with at least one security flaw appeared first on SC Media.

Continue reading

Posted in Application Security, Manufacturing, Mobile, Security News | Comments Off on 70% of apps for the manufacturing sector spent all of 2020 with at least one security flaw

Reliance on cloud, APIs create confusion and introduce risk into software development

Posted on January 20, 2021 by Derek B. Johnson

Businesses are increasingly hosting their applications in public or private clouds while using APIs to speed up the development process. Both shifts come with security implications.

The post Reliance on cloud, APIs create confusion and introduce risk into software development appeared first on SC Media.

Continue reading

Posted in Application Security, Cloud, Cloud Security, Security News | Comments Off on Reliance on cloud, APIs create confusion and introduce risk into software development

Sunspot malware scoured servers for SolarWinds builds that it could weaponize

Posted on January 13, 2021 by Bradley Barth

Software company says 2 customer inquires, in hindsight, appear linked to supply-chain attack

The post Sunspot malware scoured servers for SolarWinds builds that it could weaponize appeared first on SC Media.

Continue reading

Posted in Application Security, DevOps, Featured, Malware, Security News, SolarWinds hack | Comments Off on Sunspot malware scoured servers for SolarWinds builds that it could weaponize

Perils of coding errors play out in Parler slip up

Posted on January 13, 2021 by Joe Uchill

Applied to internet applications in general, the IDOR problems that led to the Parler exposure could extend to anything stored sequentially and not secured individually — receipts, posts, and in many instances entire accounts.

The post Perils of coding errors play out in Parler slip up appeared first on SC Media.

Continue reading

Posted in Application Security, Featured, Privacy, Security News, Social Media | Comments Off on Perils of coding errors play out in Parler slip up

‘I’ll Teams you’: Employees assume security of links, file sharing via Microsoft comms platform

Posted on January 12, 2021 by Bradley Barth

In theory they know better. But Users naïvely trust workplace communications platforms, despite phishing and impersonation threats.

The post ‘I’ll Teams you’: Employees assume security of links, file sharing via Microsoft comms platform appeared first on SC Media.

Continue reading

Posted in Application Security, Featured, Phishing, Privacy, Security News | Comments Off on ‘I’ll Teams you’: Employees assume security of links, file sharing via Microsoft comms platform