Application Security news stories
Dynatrace extends application security capabilities for runtime environments
Dynatrace has announced that it has extended its Application Security Module to detect and protect against vulnerabilities in runtime environments.
Q1 DDoS and application attack activity reveals surprise result
The cybersecurity threat landscape in the first quarter of 2022 represented a mixed bag of old enemies and new foes. New actors dominated the DDoS threat landscape while application security faced tried-and-true attack vectors.
The 'A-B-C' of effective application security
Software applications have been a key tool for businesses for decades, but the way they are designed and operated has changed during the past few years.
What are the DDoS attack trend predictions for 2022?
Mitigation and recovery are vital to ensuring brand reputation remains solid in the face of a Distributed Denial of Service (DDoS) attack and that business growth and innovation can continue.
Data Theorem launches "industry first" attack surface management solution
"No solution uses full-stack application runtime analysis and dynamic inventory discovery to support the challenges around vendor management."
How to cope with A/NZ’s coming cybersecurity talent shortage
Australia’s recent budget ushers in the nation’s ‘biggest ever’ cybersecurity spend and, likely also, massive demand for cybersecurity jobs.
Checkmarx extends security testing platform offering to A/NZ
Checkmarx is expanding its cloud-based application security testing platform to A/NZ to help developers in the region secure their application coding.
Axonius launches first SaaS risk management product
SaaS management tools typically cater to the business side or the security posture management side, but each side is still prone to visibility gaps and information siloes.
Five reasons you need vulnerability management for business-critical applications
Attacks on business-critical applications can exploit administrator privileges, which can then be used to bypass application controls and compromise data and processes.
Kaspersky uncovers malicious version of Whatsapp mod
"We’ve seen how cybercriminals are spreading malicious files through the ad blocks in such apps, and it’s putting the users at risk."
Severe vulnerabilities in appsec environments taking longer to fix - NTT Security
The average time to remediate the most severe vulnerabilities in an organisation’s IT infrastructure has now reached 256 days.
Juniper Networks unveils Cloud Workload Protection to defend application workloads
"Nearly everything we do on the network involves applications, from web browsing and chat to mobile games and services that allow us to get work done."
State-affiliated threat actors attribute 57% of all known web app incidents over last five years - Report
According to a multi-source report, state-affiliated threat actors attributed to 57% of all known web application incidents over the last five years.
Veracode SoSS report: Significant open source security gap for vendors and users
Researchers highlight a significant gap in open source security, with 80% of third-party libraries never getting updated by developers.
Micro Focus' CyberRes named leader in Gartner MQ for Application Security Testing
Developing secure software has become an imperative over the past year as organisations have rapidly adopted and embraced new ways of doing business digitally.”
Researchers identify four new security vulnerabilities in Microsoft Office
Check Point Research has identified four new security vulnerabilities in the Microsoft Office suite.
Cloud-native architectures breaking traditional approaches to application security
Just 3% of organidations have real-time visibility into runtime vulnerabilities, as multicloud environments, Kubernetes, and DevSecOps drive digital transformation.
Bad bots, broken APIs and supply chain attacks biggest challenge facing organisations
More needs to be done to protect against application security threats, particularly newer threats like bot attacks, API attacks, and supply chain attacks.
Entrust launches PKI as-a-Service to better secure cloud apps
The next generation of its high-assurance PKI, Entrust PKIaaS, is designed to be secure, quick to deploy, scale on-demand, and run in the cloud.
Four reasons why application delivery is critical to DevOps
Selecting an application delivery solution that maximises automation and integrates into an existing DevOps environment is critical, writes Radware senior security solutions architect for APAC Yaniv Hoffman.
WhiteHat: 50% of apps are vulnerable
"The state of application security remains very concerning."
AppDynamics launches Cisco Secure Application to protect against vulnerabilities
AppDynamics, part of Cisco, has released Cisco Secure Application, a solution designed to simplify vulnerability management, defend against cyber attacks and protect applications.
Imperva updates WAAP and Data Security offerings with emphasis on simplicity
New simplified subscription plans and security services have been designed to make it easier for businesses to protect critical assets from a growing volume of complex and automated threats.
Application Performance Monitoring / APM
Dynatrace to offer cloud application security capabilities
Dynatrace is pushing further into the cloud application security space this month, as the company launches a new module as part of its offering across the Software Intelligence Platform.