WikiLeaks has released a second batch of CIA attack tools, dubbed Dark Matter, which includes malware designed to exploit Mac OS X and iOS devices. But Apple contends the attacks target vulnerabilities in its software that have long been patched, so users are not at risk.
Canadian authorities narrowly escaped a data breach by stopping an intrusion at the country's statistics agency. The cyberattack used a zero-day vulnerability in Apache Struts 2, which has now been patched.
A groundbreaking study from RAND Corporation quantifies the stakes around how zero-day software vulnerabilities get discovered and persist, bringing hard facts to bear on related - and contentious - debates surrounding vulnerability disclosure and public safety.
Confide, an encrypted messaging application, received a surge of attention after White House officials began using it for leaks. But a teardown of the app by two security firms revealed a raft of serious security issues.
CA Technologies has announced plans to snap up application security testing vendor Veracode for $614 million cash, to offer SaaS-based application security testing. The move signals that secure coding - and agile-inflected DevOps - is hot. But will it come in time to secure the internet of things?
Bots come in all varieties. How do you identify bots that interact with your web applications and sites, and distinguish between good and bad bot activity. Download this infographic to get the basics of bot management - what works and what doesn't.
Learn more about:
What Are Bots?
4 Common Harmful Bot...
Security teams safeguarding web applications deal with a lot: delivering security capabilities that integrate into a living, breathing software organization that can cope with determined attackers, and that can scale to meet the needs of the enterprise in the future.
This whitepaper will teach you everything you...
If you run a website today, you need to implement ongoing security tactics to combat the modern attacker who are adapting to your defenses with primary motivation of hijacking data . What are the effective ways of doing this and how can your organization benefit from a web application firewall?
Most enterprises are providing employees and third parties with remote access to their applications in much the same way they did 20 years ago - through VPNs, proxies, and remote desktops - but new and growing realities are forcing enterprises to take a different path.
Read this whitepaper to learn five reasons...
The present government's move to demonetize currency has given an increased impetus to cashless and electronic transactions in the country. With digitization occurring across all spheres of life,
the common citizen is being increasingly incentivized to go digital with their financial transactions, which can...
With the current demonetization move and the emphasis on cashless transactions in India, the chances of cyber risk to the payments infrastructure are higher ever before. What then will be India's
stance going forward and how do business and practitioners need to respond to this risk? country like India and what are...
The cost upsides of writing code that's as free from bugs as possible has long been known, says Veracode's Chris Wysopal, but bugs continue to plague production code. Thanks to the rise of agile programming, however, there are new opportunities to eradicate flaws during development.
For too long, ensuring that code is securely written - and bug free - has been a business afterthought. But there's been new hope for building security into the development lifecycle, thanks to the rise of DevOps, aka rugged software, says Chris Wysopal, CTO of the application security firm Veracode.
A researcher claims WhatsApp has dismissed his finding that there's a backdoor in the application that could allow attackers to unlock encrypted messages. But the controversy is more nuanced - and for most of us, much less threatening - than it might first appear.
Rajendra Pawar, chairman of NASSCOM's Cyber Security Taskforce, discusses how to build India as a global cybersecurity hub and develop a skilled workforce. He describes his vision for the next five years