Adobe released a fresh out-of-band security update to patch an improperly fixed ColdFusion zero-day vulnerability being actively exploited in the wild that allows attackers to bypass security controls. The update includes fixes for two other critical vulnerabilities.
Product security is the other half of the security picture. While IT security focuses on an internal audience, product security teams must respond quickly to issues identified by customers and researchers. Quentyn Taylor of Canon EMEA discussed the value of product security programs.
How can you tackle mobile app security and solve user concerns about usability? No-code cyber defense automation can be used to achieve security outcomes in seconds, build desired protections and prevent fraud and malware directly inside the CI/CD pipeline, said Appdome CEO Tom Tovar.
Traditional licensing models that lock organizations into fixed solutions or time periods are no longer ideal. Organizations need to consider usage-based licensing approaches that offer flexibility to deploy whatever solutions are required, wherever they are needed, for whatever length of time.
Technology giant Apple has joined the chorus of voices calling on the British government to rethink its proposed Online Safety Bill legislation intended to increase public safety by monitoring people's private communications via client-side scanning.
Organizations today are investing in modernizing their IT infrastructures in the data center and the public cloud for their digital acceleration initiatives. For many, their strategy to drive better business outcomes hinges on building and operating applications that provide a better experience for their customers and...
The desire for digital acceleration has led organizations to drive toward delivering faster and better applications experiences and to bring applications and data closer to users and devices. Many organizations have come to realize that application journeys are much more fluid in that applications can live anywhere...
With many organizations accelerating their digital transformation, faster cloud migration of IT applications was seen as the key step to driving business outcomes. These rapid changes increased cybersecurity risks, imposing a heavy burden on infrastructure teams, including networking and security operations.
During...
The desire for digital acceleration has compelled organizations to deliver faster and better application experiences. In the process, they have realized that this transformation is extremely fluid and complex because applications can reside anywhere—from data centers to hybrid and multi-clouds to edge compute....
Digital acceleration is a constantly evolving process of transformation as organizations strive to modernize application and cloud journeys to meet the needs of their customers or organizations today and tomorrow. Organizations must also accept that their deployment, consumption, and security requirements will evolve...
The Securities and Exchange Commission accused SolarWinds CFO Bart Kalsu and CISO Tim Brown of violating securities laws in their response to the 2020 cyberattack. Kalsu and Brown are among "certain current and former executive officers and employees" targeted by the SEC for alleged violations.
Millions of GitHub repositories are vulnerable to a repository renaming flaw that could enable supply chain attacks, a new report by security firm Aqua said. It found 36,983 GitHub repositories vulnerable to repo jacking attacks, including Google and Lyft.
Innovations in generative AI have accelerated, with applications across large language models, image and video generation, and audio/voice. Organizations want to know how these developments change the cyber threat landscape. In this discussion, we will talk about the risks generative AI poses and how to prepare for...
A surging Sonatype and Snyk joined stalwart Synopsys atop Forrester's software composition analysis rankings, while Mend.io tumbled from the leaders category. SCA historically didn't get as much attention as application security testing but that’s changing, said Forrester's Janet Worthington.
Hackers hit the e-commerce industry with 14 billion attacks in 15 months, pushing it to the top of the list of targets for web application and API exploits. A new Akamai report blames digitalization and the wide range of vulnerabilities hackers can exploit in web applications.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.com, you agree to our use of cookies.
