Eskenzi PR ad banner Eskenzi PR ad banner

News

Research estimates that the average smartphone user has 80 apps on their device, and many companies leverage their own app to communicate with customers. In light of this, it has become critical that due attention is given to maintaining the security of these mobile app ecosystems. Just this year, large mobile-app breaches made headlines through their new use of overlay attacks within mobile app attacks, leading users to believe they were interacting with legitimate apps...

Read more
Latest Version Of Synopsys’ BSIMM10 Study Highlights The Impact Of DevOps On Software Security.

Synopsys has announced it will showcase the Fast Application Security Testing (fAST) offerings that represent the latest capabilities and features of the Polaris Software Integrity Platform® at RSA Conference 2023, April 24-27 in San Francisco. Synopsys fAST Static and Synopsys fAST SCA enable DevOps teams to quickly find and fix vulnerabilities in their proprietary code and open source dependencies through a single fully integrated SaaS platform. Underpinned by modern cloud architecture and scalable multi-tenant SaaS...

Read more
New Research Highlights Increased Security Risks Posed by Remote Working and BYOD

New research released by  Lookout, Inc. the increased number of growing threats associated with remote work and bring your own device (BYOD) policies faced by organisations. The State of Remote Work Security aims to help raise awareness amongst IT and security leaders about the growing threats associated with remote work and bring your own device (BYOD) policies. Survey results show that with remote and hybrid working, personal and work tasks blur together and the boundaries...

Read more
Pie Chart, Purple

Today Salt Security have released the findings from their latest Salt Labs State of API Security Report, Q1 2023, which found that there has been a 400% increase in unique attackers (over 4800) in the last six months. The report makes it clear that attackers are getting wise to exploiting APIs – and they’re persistent. Attackers will try time and time again until something works. Last year's report found that API attacks increased 681% in...

Read more
Cato Networks delivers first CASB for instant visibility and control of cloud application data risk

Today, Cato Networks has been named the Leader in the Single-Vendor SASE Quadrant Analysis published in TechTarget. "We're honoured to be identified as the Leader in single-vendor SASE market," says Shlomo Kramer, CEO and co-founder of Cato Networks. "Cato introduced the first worldwide SASE platform in 2016, four years before Gartner defined the term. Since then, we've continued to enhance and extend Cato SASE Cloud as recognized by this award." Why Single-Vendor SASE? While SASE brings...

Read more
Synopsys discover new vulnerability in Pluck Content Management System

Software security company Synopsys have discovered a new remote code execution vulnerability (RCE) in the Pluck CMS system. Pluck is a content management system (CMS) implemented in PHP designed for setting up and managing your own website. Devised with ease of use and simplicity in mind, Pluck is best suited for running a small website. Pluck CMS features an “albums” module. Albums are used to create collections of images that can be inserted into web...

Read more
Blue logo, capitalised letters. SPECOPS.

New research released by Specops Software outlines the most common Fortune 500 company names that show up in compromised password data. The Specops research team analysed an 800 million password subset of the larger Breached Password Protection database to obtain these results. Among the top ten, popular household names like Coca-Cola (16,710 appearances), Starbucks (3,800 appearances) and McDonald’s (2,270 times) appear. The most common Fortune 500 company to have been found among passwords in the subset...

Read more
Ferrari Data Breach: The Industry has its say

Apparently, the team at Ferrari may not have been up to speed with the latest ways to ensure your security is top priority. It was announced on Monday via a statement uploaded to their website that Ferrari was “recently contacted by a threat actor with a ransom demand related to certain client contact details”. Ferrari then went on to say that it “will not be held to ransom” and that the best course of action...

Read more
Guild Education controls API abuse with Salt Security

Salt Security, the API security company, is working with Guild Education, the leader in opportunity creation for America’s workforce, to implement the Salt Security API Protection Platform to secure its growing application programming interface (API) ecosystem. Guild relies on APIs for the exchange of private and sensitive student, employer, and school data across its Career Opportunity Platform. With the Salt platform, Guild gains automatic and continuous API visibility, insights into potential data exposure, and API...

Read more
Transparent Tribe APT weaponising Android messaging apps to target officials in India and Pakistan with romance scams

ESET researchers have analysed a cyberespionage campaign run by the Transparent Tribe APT group distributing CapraRAT backdoors through trojanised and supposedly “secure” Android messaging apps that exfiltrate sensitive information of mostly Indian and Pakistani Android users — presumably with a military or political orientation. The victims were probably targeted through a honey-trap romance scam, in which they were initially contacted on another platform and then convinced to use supposedly “more secure” apps, which they were...

Read more
Page 11 of 363 1 10 11 12 363