AppSec

Russia is attacking Ukraine with cyberattacks and psyops. But the scale is pathetic and Ukraine is fighting back—hard ...

ThreatX today expanded its namesake platform for protecting application programming interfaces (APIs) to provide increased visibility into the size of the attack surface and the scope of the attacks being launched against ...

Security is a dilemma for many leaders. On the one hand, it is largely recognized as an essential feature. On the other hand, it does not drive business. Of course, as we ...

A ridiculously dumb flaw in Java’s signature checking code is patched. This isn’t some crufty legacy Sun code, but actual garbage Oracle sloppiness that’s causing IT people to chase their tails yet again ...

Security has long been seen as an afterthought in the DevOps process, and a new report from Secure Code Warrior offers a reason why. While developers say a security-led approach is important ...

Invicti has published the Spring 2022 Edition of The Invicti AppSec Indicator, a comprehensive study that ranks the most common web vulnerabilities. To conduct their research, Invicti analyzed 939 customers across the ...

Chinese researchers have achieved yet another security advance: They managed to communicate across a distance of more than 60 miles. The aptly named Prof. Long (pictured) and his team at Tsinghua University ...

GitOps is a set of practices for managing infrastructure and application deployment using Git version control systems. GitOps uses a Git repository as a single source of truth for declarative configuration of ...

Earlier this year, the White House announced that it is working with the European Union on a Trans-Atlantic Data Privacy Framework. According to a White House statement, this framework will “reestablish an ...

Russia’s infamous Sandworm APT group is at it again: The scrotes have been trying to cut power to the Ukrainian capital ...