Application Security

Application Security news, information, and how-to advice

robots pc computers army desks work
lawsuit judge law court decision sued

whisper shh quiet mouth lips men antique vintage secret

Got secrets? Docker Datacenter can help your applications keep them

Docker Datacenter now supports secrets in containerized apps -- API keys, passwords, and encryption keys -- and ensures they are securely stored and transmitted

google play store

Google might be gearing up to remove millions of Play Store apps next month

The crackdown by Google, which sets a March 15 compliance date, targets apps with questionable privacy policies

apple ios

Dozens of iOS apps fail to secure users' data, researcher says

The developers have misconfigured the apps to accept invalid TLS certificates, says the security researcher who detected the app vulnerabilities

machine learning

AI isn't for the good guys alone anymore

Criminals are beginning to use artificial intelligence and machine learning to get around cyberdefenses

BSOD

Vulnerability in Microsoft SMBv3 protocol crashes Windows PCs

Computers running fully patched Windows 10, 8.1, Server 2012, and 2016 are hit by Blue Screens when trying to connect to an infected server

smartphone apps transmit user man

Better security through obscurity? Think again

Hackers may not target obscure apps as often as popular software, but your systems still won't be much safer

heartbleed illustration

That Hearbleed problem may be more pervasive than you think

The 200,000 devices with the OpenSSL Heartbleed vulnerability may include commercial software you are running

defenses against super attackes 1

Cisco scrambling to fix a remote code execution problem in WebEx

There’s no workaround and no final patch for a critical bug that can open up users’ computers to remote code execution attacks

apple 1839363

Apple quashes bugs in iOS, MacOS, and Safari

Fixes new MacBook Pro's graphics problems with software update

Android apps (2)

Google pushed developers to fix security flaws in 275,000 Android apps

Over 90,000 developers acted based on alerts issued through the Google Play App Security Improvement program

20151027 oracle cloud on building 100625234 orig

Oracle patches raft of vulnerabilities in business applications

The company's quarterly patch update includes a total of 270 security fixes for many products

security training ts

Got microservices? You'd better secure them

Our modern world of containers and microservices presents new challenges that open new vulnerabilities if left unaddressed

adobe systems headquarters san jose

Adobe patches critical flaws in Flash Player, Reader, and Acrobat

Adobe Systems released security updates for its Flash Player, Adobe Reader and Acrobat products fixing critical vulnerabilities that could allow attackers to install malware on computers.

code programming software bugs cybersecurity

This tool can help weed out hard-coded keys from software projects

Truffle Hog can find access tokens and keys that are 20 characters or longer inside source code repositories

ransomware data laptop

MongoDB ransomware attacks sign criminals are going after servers, applications

Ransomware is lucrative, and attackers looking for new ways to extort enterprises are going after data stored on web and app servers, even SaaS apps

bug bounty

Why companies offer a hacking bounty -- and why there are challenges

Major companies like Apple, Uber, and Yelp regularly offer bounties -- some as high as $200,000 -- but there can be drawbacks

ransomware data laptop

Exposed MongoDB installs being erased, held for ransom

Administrators should check their MongoDB deployments before they’re wiped clean

devops programmer computer

The outlook of application security in 2017

Educated guesses about what the direction of application security and secure development based on code has changed over the last year

Load More