Tag: application-security

DEF CON 32 AppSec Village Transforming AppSec Protecting ‘Everything as Code

Oct 29, 2024 1:56 AM

Tags: application-security

Authors/Presenters:Kunal Bhattacharya, Shahar Man, Trupti Shiralkar, Sara Attarzadeh Our sincere appreciation to DEF CON, and the Presenters/Authors f… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/def-con-32-appsec-village-transforming-appsec-protecting-everything-as-code/
DEF CON 32 AppSec Village 0 0 0 0 Day Exploiting Localhost APIs From The Browser

Oct 28, 2024 11:56 PM

Tags: api, application-security, exploit, zero-day

Authors/Presenters: Avi Lumel, skyGal Elbaz Our sincere appreciation to DEF CON, and the Presenters/Authors for publishing their timely DEF CON 32 eru… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/def-con-32-appsec-village-0-0-0-0-day-exploiting-localhost-apis-from-the-browser/
DEF CON 32 AppSec Village Ticking SQLi

Oct 28, 2024 5:56 PM

Tags: application-security

Authors/Presenters:Iggy Our sincere appreciation to DEF CON, and the Presenters/Authors for publishing their timely DEF CON 32 erudite content. Origin… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/def-con-32-appsec-village-ticking-sqli/
DEF CON 32 AppSec Village Relative Path File Injection The Next Evolution in RPO

Oct 28, 2024 5:56 PM

Tags: application-security, injection

Authors/Presenters:Ian Hickey Our sincere appreciation to DEF CON, and the Presenters/Authors for publishing their timely DEF CON 32 erudite content. … First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/def-con-32-appsec-village-relative-path-file-injection-the-next-evolution-in-rpo/
DEF CON 32 AppSec Village The Darkest Side of Bug Bounty

Oct 28, 2024 11:56 AM

Tags: application-security, bug-bounty

Authors/Presenters:Jason Haddix Our sincere appreciation to DEF CON, and the Presenters/Authors for publishing their timely DEF CON 32 erudite content… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/def-con-32-appsec-village-the-darkest-side-of-bug-bounty/
DEF CON 32 AppSec Village The Immortal Retrofuturism of Mainframes and How to Keep Them Safe

Oct 26, 2024 11:56 PM

Tags: application-security

Authors/Presenters:Michelle Eggers Our sincere appreciation to DEF CON, and the Presenters/Authors for publishing their timely DEF CON 32 erudite cont… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/def-con-32-appsec-village-the-immortal-retrofuturism-of-mainframes-and-how-to-keep-them-safe/
DEF CON 32 AppSec Village Defeating Secure Code Review GPT Hallucinations

Oct 25, 2024 1:57 PM

Tags: application-security

Authors/Presenters:Wang Zhilong, Xinzhi Luo Our sincere appreciation to DEF CON, and the Presenters/Authors for publishing their timely DEF CON 32 eru… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/def-con-32-appsec-village-defeating-secure-code-review-gpt-hallucinations/
DEF CON 32 AppSec Village Securing Frontends at Scale;Paving our Way to Post XSS World

Oct 25, 2024 8:56 AM

Tags: application-security, xss

Authors/Presenters:Jen Ozmen, Aaron Shim Our sincere appreciation to DEF CON, and the Presenters/Authors for publishing their timely DEF CON 32 erudit… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/def-con-32-appsec-village-securing-frontends-at-scalepaving-our-way-to-post-xss-world/
DEF CON 32 AppSec Village Speed Bumps and Speed HacksP: Adventures in Car Mfg Security

Oct 24, 2024 6:02 PM

Tags: application-security

Authors/Presenters:Paulo Silva, David Sopas Our sincere appreciation to DEF CON, and the Presenters/Authors for publishing their timely DEF CON 32 eru… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/def-con-32-appsec-village-speed-bumps-and-speed-hacksp-adventures-in-car-mfg-security/
DEF CON 32 AppSec Village Using EPSS for Better Management Vulnerability Management

Oct 23, 2024 9:25 PM

Tags: application-security, vulnerability, vulnerability-management

Authors/Presenters:Jerry Gamblin Our sincere appreciation to DEF CON, and the Presenters/Authors for publishing their timely DEF CON 32 erudite conten… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/def-con-32-appsec-village-using-epss-for-better-management-vulnerability-management/
DEF CON 32 AppSec Village Lessons Learned from Building and Defending LLM Applications

Oct 23, 2024 5:25 PM

Tags: application-security, lessons-learned, LLM

DEF CON 32 – Lessons Learned from Building and Defending LLM Applications Authors/Presenters:Javan Rasokat Our sincere appreciation to DEF CON, and th… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/def-con-32-appsec-village-lessons-learned-from-building-and-defending-llm-applications/
DEF CON 32 AppSec Village Your CI CD Pipeline Is Vulnerable, But It’s Not Your Fault

Oct 23, 2024 1:25 AM

Tags: application-security, vulnerability

Authors/Presenters:Elad Pticha, Oreen Livni Our sincere appreciation to DEF CON, and the Presenters/Authors for publishing their timely DEF CON 32 eru… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/def-con-32-appsec-village-your-ci-cd-pipeline-is-vulnerable-but-its-not-your-fault/
DEF CON 32 AppSec Village Web2 Meets Web3 Hacking Decentralized Applications

Oct 22, 2024 1:28 PM

Tags: application-security, hacking

Authors/Presenters: Peiyu Wang Our sincere appreciation to DEF CON, and the Presenters/Authors for publishing their timely []DEF CON 32]2 erudite cont… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/def-con-32-appsec-village-web2-meets-web3-hacking-decentralized-applications/
DEF CON 32 AppSec Considerations From The Casino Industry

Oct 21, 2024 10:01 AM

Tags: application-security

Authors/Presenters:Aleise McGowan, Tennisha Martin Our sincere appreciation to DEF CON, and the Presenters/Authors for publishing their timely []DEF C… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/def-con-32-appsec-considerations-from-the-casino-industry/
Unprecedented Surge in Mobile Application Security Breaches: Understanding Risks and Remediation Efforts

Oct 14, 2024 11:54 AM

Tags: application-security, breach, Internet, mobile, risk

For the first time in history, mobile internet usage has surpassed desktop usage. With the increasing number of users relying on their mobile devices … First seen on itsecurityguru.org Jump to article: www.itsecurityguru.org/2024/10/04/unprecedented-surge-in-mobile-application-security-breaches-understanding-risks-and-remediation-efforts
Synopsys Software Integrity Group Rebrands as Black Duck A New Era in Application Security

Oct 10, 2024 10:54 AM

Tags: application-security, group, software

The former Synopsys Software Integrity Group announced today that it has rebranded as Black Duck® Software, Inc. (Black Duck), a newly independent app… First seen on itsecurityguru.org Jump to article: www.itsecurityguru.org/2024/10/01/synopsys-software-integrity-group-rebrands-as-black-duck-a-new-era-in-application-security
SaaS Application Security – The Missing Component of Cyber Risk in the Cloud

Oct 8, 2024 5:06 PM

Tags: application-security, cloud, cyber, cybersecurity, risk, saas

Come hear from industry experts KPMG Canada and AppOmni to understand the commonalities of SaaS cybersecurity with other key cloud security use cases…. First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/saas-application-security-the-missing-component-of-cyber-risk-in-the-cloud/
News alert: Introducing Mayhem Security, ForAllSecure unveils name change, fresh focus

Oct 2, 2024 2:36 PM

Tags: application-security

Pittsburgh, PA, Oct. 1, 2024, ForAllSecure, the world’s most advanced application security testing company, today announced it is changing its… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/news-alert-introducing-mayhem-security-forallsecure-unveils-name-change-fresh-focus/
OWASP Global AppSec SF 2024: Empowering Developer Security As A Community

Oct 2, 2024 3:36 AM

Tags: ai, application-security, risk, strategy, tool

Takeaways from OWASP Global AppSec SF 2024, covering security tools, AI risks, and strategies for improving application security while empowering deve… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/owasp-global-appsec-sf-2024-empowering-developer-security-as-a-community/
DefectDojo Raises $7 Million for Application Security Platform

Sep 26, 2024 12:12 PM

Tags: application-security, vulnerability, vulnerability-management

Application security and vulnerability management platform DefectDojo has raised $7 million in Series A funding. The post DefectDojo Raises $7 Million… First seen on securityweek.com Jump to article: www.securityweek.com/defectdojo-raises-7-million-for-application-security-platform/
Studie zur Nutzung generativer KI in der Application Security – Entwickler lieben KI-generierten Code trotz Sicherheitsbedenken

Sep 23, 2024 10:13 AM

Tags: ai, application-security

First seen on security-insider.de Jump to article: www.security-insider.de/ki-gestuetzte-softwareentwicklung-sicherheitsrisiken-nutzung-a-ebf92e68b018b86f41ba776ba3cf2ef9/
SC Award Winners 2024 Edgio Best Application Security Solution

Sep 19, 2024 9:29 PM

Tags: application-security

First seen on scmagazine.com Jump to article: www.scmagazine.com/news/sc-award-winners-2024-edgio-best-application-security-solution
Detecting vulnerable code in software dependencies is more complex than it seems

Sep 19, 2024 3:31 PM

Tags: application-security, software, vulnerability

In this Help Net Security interview, Henrik Plate, CISSP, security researcher, Endor Labs, discusses the complexities AppSec teams face in identifying… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/09/18/henrik-plate-endor-labs-vulnerable-code-software-dependencies/
Wiz Launches Wiz Code Application Security Tool

Sep 18, 2024 1:30 PM

Tags: application-security, tool

First seen on darkreading.com Jump to article: www.darkreading.com/application-security/wiz-launches-wiz-code-application-security-tool
Application Security, The Complete Guide

Sep 13, 2024 5:25 PM

Tags: application-security, guide

First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/09/application-security-the-complete-guide/
Dynamic & Static Application Security Testing: Die besten DAST- & SAST-Tools

Sep 13, 2024 4:55 AM

Tags: application-security, tool

First seen on csoonline.com Jump to article: www.csoonline.com/de/a/die-besten-dast-und-sast-tools
Decipher Podcast: Reddit’s Matt Johansen on Identity Attacks, Enterprise Security, and Burnout

Sep 12, 2024 5:53 PM

Tags: application-security, attack, identity, usa

Reddit’s head of application security Matt Johansen joins Dennis Fisher to talk about the highlights of Black Hat USA, the challenges of sorting secur… First seen on duo.com Jump to article: duo.com/decipher/decipher-podcast-reddit-s-matt-johansen-on-identity-attacks-enterprise-security-and-burnout
Can AI Help Fix Security Vulnerabilities?

Sep 12, 2024 5:55 AM

Tags: ai, application-security, intelligence, vulnerability

We get a lot of questions from our customers around the topic of artificial intelligence in combination with SAST (Static Application Security Testing… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/09/can-ai-help-fix-security-vulnerabilities/
ASPM and Modern Application Security

Sep 2, 2024 10:34 AM

Tags: application-security

First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/aspm-and-modern-application-security/
The 20-year application security blindspot: Can ADR finally fix it?

Sep 1, 2024 9:33 PM

Tags: application-security

First seen on scmagazine.com Jump to article: www.scmagazine.com/perspective/the-20-year-application-security-blindspot-can-adr-finally-fix-it