Still Looking For RASP Resources? SANS Has A RASP Report
It turns out the SANS Institute created a report titled, "Runtime Application Self-Protection (RASP), Investigation of the Effectiveness of a RASP Solution in Protecting Known Vulnerable Target Applications" in April of 2019, and covers a lot of useful information about what RASP is. The post Still Looking For RASP Resources? ... Read More
New Research Reveals Companies Are Losing the Web Application Security War
A new report found that companies are struggling to keep up with the rapidly evolving threats, and that attacks on web applications have increased to become the single largest cause of data breaches The post New Research Reveals Companies Are Losing the Web Application Security War appeared first on K2io ... Read More
Most Workers Not Interested in Switching to a Cybersecurity Role
A new study from (ISC)^2 revealed that most UK and US workers have a positive view of cybersecurity professionals, but few are considering a career in the industry The post Most Workers Not Interested in Switching to a Cybersecurity Role appeared first on K2io ... Read More
Travel Giants Fail to Secure Websites, Despite High Profile Breaches
A new investigation by Which? has found hundreds of data security vulnerabilities on the websites of 98 travel companies including significant problems at Marriott, British Airways and EasyJet, which were in the top 5 companies with the most discovered risks. Many of the travel companies found to have vulnerabilities have ... Read More
Moving to the Cloud? Don’t Forget Application Security
The cloud was already a big topic before the pandemic started and pushed organizations to adopt the cloud more quickly than originally planned. But the pandemic has pushed many organizations to deploy and update applications sooner than expected to support the increased number of employees working from home. The post ... Read More
Linux Systems are Hackers’ Next Targets
A new article in Tech Republic is predicting that Linux servers and workstations will be the next big target for hackers. There has been an increase in the tools that are being developed targeting Linux systems, and it's believed the targets will be Linux systems being used by government and ... Read More
NIST SP 800-53 Revision 5 Released – Next Generation Security and Privacy Controls
Draft 5 of SP 800-53 closed its comment period back in May, and was just released as SP 800-53 Revision 5 on September 23, 2020 in its final form. The post NIST SP 800-53 Revision 5 Released – Next Generation Security and Privacy Controls appeared first on K2io ... Read More
The Top 5 Needs of DAST Testing
DAST testing is an important part of the application development process, but there are some significant areas for improvement. We'll talk about five areas that need help and how K2 can improve your DAST testing experience. The post The Top 5 Needs of DAST Testing appeared first on K2io ... Read More
NIST SP 800-53 Gets One Step Closer to Becoming a Standard
Draft 5 of SP 800-53 closed its comment period back in May, and SP 800-53B was released shortly afterwards in July of 2020, and opened its comment period, which just closed on September 11, 2020, moving it one step closer to becoming a standard. The post NIST SP 800-53 Gets ... Read More
The Top 5 Programming Languages for Security Admins to Learn
A new article from Tech Republic covers the top 5 programming languages for security administrators to learn, along with the reason for each The post The Top 5 Programming Languages for Security Admins to Learn appeared first on K2io ... Read More
