With hundreds of thousands of implementations across the globe, Enterprise Resource Planning (ERP) applications are supporting the most critical business processes for the biggest organizations in the world. This report provides insights into how the threat landscape has been evolving over time for ERP applications,...
Today, the "API economy" is quickly changing how the world interacts. Everything from photo sharing, to online shopping, to hailing a cab is happening through APIs. Because of APIs, technical innovation is happening at a faster pace than ever. If you already write software, you are probably familiar with APIs, as they...
Application Security is much different than other security domains, so applying the standard methods does not necessarily address the unique challenges that AppSec can bring.
Network security is everywhere so naturally, we understand the need for securing the perimeter. However, application vulnerabilities, which...
Every application should be protected the same way no matter where it resides, rather than focusing on a "perimeter" approach, says Doug Copley of Duo Security, who describes a "zero trust" approach.
Federal regulators are reminding organizations about the importance of identifying and patching software vulnerabilities. But why are these seemingly basic security steps so challenging for so many?
A recent analyst report stated 80% of respondents confirmed the use of Web Application Firewalls (WAFs) to protect public-facing websites and applications, but most have remained concerned their WAFs may not be covering all of their security requirements. Your basic WAFs could be risking your data to theft and...
Open source software components may be free, but that doesn't automatically make them safe to use. "There can be risks involved," says Steve Giguere, of Synopsys, who says these risks are often compounded by the pressure to deliver goods to market quickly and with new features.
As organizations move more data into the cloud, too many are treating security as an afterthought, says Outpost24's Bob Egner. Instead, as part of an agile development program, he recommends making penetration testing a constant, and using solid DevSecOps to maintain optimal cloud data security.
The explosive growth of IP networking has let a genie out of the bottle. The more an organization or nation is connected to the internet, the more vulnerable it becomes. The challenge is finding the right balance between "can" and "should" - the fact that we can connect every person, server, app, and cloud vs. the...
Deployed at the network layer, segmentation was first developed to improve network performance. But as cybersecurity experts have realized that a "perimeter only" approach to security is not working, it has become increasingly clear the micro-segmentation is foundational to data center and cloud security. ...
As of January 1, 2018, all SWIFT customers had a deadline to self-attest to their compliance with the new SWIFT Customer Security Program (CSP), designed to respond to the wave of cybercrime that began with the Bank of Bangladesh breach back in February, 2016 and has swept across the world over the past two years. If...
The proliferation of apps, wearables, sensors and other connected devices that provide access to real time health and wellness data have the potential to revolutionize the provision of healthcare. In addition, the healthcare industry is increasingly tapping into the power of deep learning to analyze health data sets...
Gone are the days of "inside versus outside" and perimeter security, as too is the mantra of "trust, but verify." In their place, organizations must adopt a zero trust architecture which assumes that everything on the network is hostile.
Download this whitepaper and learn how a zero trust security architecture...
The apps financial services organizations depend on to fuel productivity, innovation and success are truly unique. But how is the industry evolving to adopt new technology that can offer the reliability, security and compliance it requires?
Download Okta's annual Businesses @ Work report which provides an in-depth...
RSA's most recent Quarterly Fraud Report shows that "newsjacking" is increasingly empowering phishing attacks, says Angel Grant, RSA's director of identity fraud and risk intelligence. The report also shows a continuing surge in mobile app fraud.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.com, you agree to our use of cookies.