Application Security

Application Security

AI Governance in AppSec: The More Things Change, The More They Stay the Same

| | AI Models Risk, Application Security
Learn how AppSec teams can extend existing security and compliance practices seamlessly to AI ...
Mend
Cybersecurity Insights with Contrast CISO David Lindner | 03/07/25

Cybersecurity Insights with Contrast CISO David Lindner | 03/07/25

| | codebase, Conditional Access, Cybersecurity, KEV catalog, MFA, open source, patching, Ransomware, security, Vulnerabilities
Insight No. 1. — Ransomware groups are using CISA’s KEV catalog as a runbook  Given that CISA's Known Exploited Vulnerabilities (KEV) catalog highlights the most actively exploited and critical Common Vulnerabilities and ...
AppSec Observer
Apple CEO Tim Cook, looking grim

Apple vs. UK — ADP E2EE Back Door Faceoff

| | #nobackdoors, ADP, Apple, Apple Data Security, Apple iCloud, back door, backdoor, backdoors, Child Abuse, child exploitation, child porn, child pornography, child sexual exploitation, cloud access, Compliance, CSAM, CSEM, E2EE, encryption, end-to-end encryption, five eyes, Five Eyes alliance, Five Eyes Intelligence Alliance, Government & Regulatory News, government access, Investigatory Powers Act, Privacy, SB Blogwatch, uk, UK Investigatory Powers Act, Won’t somebody think of the children?
Won’t Tim Think of the Children? End-to-end encryption battle continues ...
Security Boulevard
Escape + Wiz: Unified Security for Modern, Cloud-Native Applications

Escape + Wiz: Unified Security for Modern, Cloud-Native Applications

| | Application Security
A new technology partnership enables mutual customers to gain full cloud and application context, establish clear ownership, and accelerate the remediation of critical risks ...
Escape - The API Security Blog
Getting the Most Value Out of the OSCP: The PEN-200 Course

Getting the Most Value Out of the OSCP: The PEN-200 Course

| | Cybersecurity, Cybersecurity Training, Offensive Security, OSCP, Penetration Testing
In this second post of a five-part series, I provide advice on how to best utilize the PEN-200 course material for a successful career in ethical hacking.Disclaimer:All opinions expressed in this article are ...
Posts By SpecterOps Team Members - Medium

Introducing Mend AI Premium

| | AI Models Risk, Application Security
Robust AI governance and threat detection with Mend AI Premium ...
Mend
Enhancing Application Security | Contrast ADR and Splunk | Contrast Security

Enhancing Application Security | Contrast ADR and Splunk | Contrast Security

| | Application Detection and Response (ADR), Application Security, AppSec, Contrast ADR, real time, SIEM, SOC, Splunk, threat detection, vulnerability, waf
Have you silenced WAF alerts in your SIEM or just stopped sending them altogether? You're not alone. Many SOCs find themselves overwhelmed by the sheer volume of noise generated by traditional WAFs, ...
AppSec Observer
When Your SaaS Vendor Goes Dark: A Guide to Protecting Your Business

When Your SaaS Vendor Goes Dark: A Guide to Protecting Your Business

| | Best Practices, data protection, open source, small business, software
When a SaaS vendor unexpectedly shuts down, your business faces significant risks. This comprehensive guide provides actionable strategies to recover your data, find alternative solutions, and implement preventative measures to ensure business ...
Deepak Gupta | AI & Cybersecurity Innovation Leader | Founder's Journey from Code to Scale
Image 1

How Scalping Bots Exploited a Vulnerable API to Disrupt Online Retail Sales

| | advanced bot protection, api, Application Security, bad bots, imperva, thales, web scraping
In the fast-paced world of online retail, where customer satisfaction and availability are paramount, a sudden attack by scalping bots can disrupt operations, inflate costs, and damage reputation. A North American Online ...
Blog
Most security tools are expensive paperweights: how to get your money's worth | Jeevan Singh

How to build a strong business case for replacing legacy DAST with a modern solution —a practical guide

| | Application Security, DAST
Learn how to build a strong business case for replacing legacy DAST with a modern solution. This step-by-step guide helps AppSec leaders ...
Escape - The API Security Blog
Load more