Application Security

Breaking news, news analysis, and expert commentary on application security, including tools & technologies.

CISA seal
Threat Intelligence
Sisense Password Breach Triggers 'Ominous' CISA WarningSisense Password Breach Triggers 'Ominous' CISA Warning

With stores of mega-corporate business intelligence, a Sisense compromise could potentially mushroom into supply chain cyberattack disaster, experts fear.

byBecky Bracken, Senior Editor, Dark Reading
Apr 11, 2024
|
2 Min Read
PR Logo
Application Security
Knostic Raises $3.3M for Enterprise GenAI Access ControlKnostic Raises $3.3M for Enterprise GenAI Access Control
Apr 11, 2024
2 Min Read
laptop with rust logo
Application Security
Critical Rust Flaw Poses Exploit Threat in Specific Windows Use CasesCritical Rust Flaw Poses Exploit Threat in Specific Windows Use Cases
byRobert Lemos, Contributing Writer
Apr 11, 2024
4 Min Read
Green door in the side of a tan brick building
Сloud Security
Expired Redis Service Abused to Use Metasploit Meterpreter MaliciouslyExpired Redis Service Abused to Use Metasploit Meterpreter Maliciously
byElizabeth Montalbano, Contributing Writer
Apr 11, 2024
3 Min Read
Open Source word alphabet letters on puzzle as a background
Application Security
XZ Utils Scare Exposes Hard Truths About Software SecurityXZ Utils Scare Exposes Hard Truths About Software Security
byJai Vijayan, Contributing Writer
Apr 10, 2024
5 Min Read
PR Logo
Application Security
Wyden Releases Draft Legislation to End Federal Dependence on Insecure, Proprietary SoftwareWyden Releases Draft Legislation to End Federal Dependence on Insecure, Proprietary Software
Apr 8, 2024
4 Min Read
PR Logo
Application Security
StrikeReady Raises $12M for AI Security Command Platform
StrikeReady Raises $12M for AI Security Command Platform
Apr 8, 2024
|
4 Min Read
Car blueprint 3D blue electric
ICS/OT Security
Software-Defined Vehicle Fleets Face a Twisty Road on Cybersecurity
Software-Defined Vehicle Fleets Face a Twisty Road on Cybersecurity
Apr 8, 2024
|
5 Min Read
byRobert Lemos, Contributing Writer
A screen showing technology icons such as keys, 0 and 1, and wireless signal, in hexagons.
Sponsored Content
Commercial WebApp Security Tools Are Too Restrictive
Commercial WebApp Security Tools Are Too Restrictive
Apr 8, 2024
|
3 Min Read
Computer programming, coding and AI artificial intelligence software development engaged by skilled coder and prompt engineer
Application Security
How Do We Integrate LLMs Security Into Application Development?
How Do We Integrate LLMs Security Into Application Development?
Apr 5, 2024
|
4 Min Read
byEdge Editors
Image of blue security lock layered over a fluffy white cloud.
Сloud Security
Reconsider Your CNAPP Strategy Using These 5 Scenarios
Reconsider Your CNAPP Strategy Using These 5 Scenarios
Apr 5, 2024
|
3 Min Read
byMicrosoft Security
database code viewed on IDE
Application Security
How to Tame SQL Injection
Tools and Techniques to Tame SQL Injection
Apr 3, 2024
|
5 Min Read
byRobert Lemos, Contributing Writer
Finger pointing at a touchscreen to a Microsoft word icon on a screen with various Microsoft applications on it
Сloud Security
Feds to Microsoft: Clean Up Your Cloud Security Act Now
Feds to Microsoft: Clean Up Your Cloud Security Act Now
Apr 3, 2024
|
5 Min Read
byElizabeth Montalbano, Contributing Writer
Webpage of Azure AI on a desktop computer screen
Application Security
Microsoft Beefs Up Defenses in Azure AI
Microsoft Beefs Up Defenses in Azure AI
Apr 1, 2024
|
5 Min Read
byJai Vijayan, Contributing Writer
Electric blue AI chip
Threat Intelligence
Cybercriminals Weigh Options for Using LLMs: Buy, Build, or Break?
Cybercriminals Weigh Options for Using LLMs: Build It or Break?
Apr 1, 2024
|
4 Min Read
byRobert Lemos, Contributing Writer
Send us a caption for an image of a businessman flying over an airport security machine while others wait in line
Сloud Security
Name That Edge Toon: Defying Gravity
Name That Edge Toon: Defying Gravity
Apr 1, 2024
|
1 Min Read
byJohn Klossner, Cartoonist
Risk board game with tank playing pieces on a map
Сloud Security
CISO Corner: Cyber-Pro Swindle; New Faces of Risk; Cyber Boosts Valuation
CISO Corner: Cyber-Pro Swindle; New Faces of Risk; Cyber & Valuations
Mar 29, 2024
|
7 Min Read
byTara Seals, Managing Editor, News, Dark Reading
A school of striped catfish
Сloud Security
Cloud Email Filtering Bypass Attack Works 80% of the Time
Cloud Email Filtering Bypass Attack Works 80% of the Time
Mar 29, 2024
|
5 Min Read
byDavid Strom
Cisco sign outside of the company headquarters
Application Security
Cisco IOS Bugs Allow Unauthenticated, Remote DoS Attacks
Cisco IOS Bugs Allow Unauthenticated, Remote DoS Attacks
Mar 28, 2024
|
1 Min Read
byBecky Bracken, Senior Editor, Dark Reading
Hands on keyboard with AI-related screens superimposed
Application Security
Pervasive LLM Hallucinations Expand Code Developer Attack Surface
Pervasive LLM Hallucinations Expand Code Developer Attack Surface
Mar 28, 2024
|
4 Min Read
byJai Vijayan, Contributing Writer
Closeup of mobile phone with logo lettering of Apple M3 chip on computer keyboard
Application Security
Patchless Apple M-Chip Vulnerability Allows Cryptography Bypass
Patchless Apple M-Chip Vulnerability Allows Cryptography Bypass
Mar 27, 2024
|
4 Min Read
byJai Vijayan, Contributing Writer
Business tycoon with cigar and scotch
Application Security
'Tycoon' Malware Kit Bypasses Microsoft, Google MFA
'Tycoon' Malware Kit Bypasses Microsoft, Google MFA
Mar 27, 2024
|
4 Min Read
byElizabeth Montalbano, Contributing Writer
Software developer laptop screen
Cyberattacks & Data Breaches
CISA Seeks to Curtail 'Unforgivable' SQL Injection Defects
CISA Seeks to Curtail 'Unforgivable' SQL Injection Defects
Mar 25, 2024
|
1 Min Read
byDark Reading Staff
Laptop screen with GitHub logo
Application Security
GitHub Developers Hit in Complex Supply Chain Cyberattack
GitHub Developers Hit in Complex Supply Chain Cyberattack
Mar 25, 2024
|
3 Min Read
byNathan Eddy, Contributing Writer
Man with sticky notes covering his face and torso
Sponsored Content
What SolarWinds Means for DevSecOps
What SolarWinds Means for DevSecOps
Mar 25, 2024
|
5 Min Read
PR Logo
Application Security
Akamai Research Finds 29% of Web Attacks Target APIs
Akamai Research Finds 29% of Web Attacks Target APIs
Mar 20, 2024
|
3 Min Read
Name That Toon: Bridge the Gap
Сloud Security
Name That Toon: Bridge the Gap
Name That Toon: Bridge the Gap
Mar 19, 2024
|
1 Min Read
byJohn Klossner, Cartoonist
A hand holding a tablet device with a hologram of a digital brain floating above it
Сloud Security
ML Model Repositories: The Next Big Supply Chain Attack Target
ML Model Repositories: The Next Big Supply Chain Attack Target
Mar 18, 2024
|
4 Min Read
byJai Vijayan, Contributing Writer
Medical pro using a computer tablet
Cyberattacks & Data Breaches
NHS Breach, HSE Bug Expose Healthcare Data in the British Isles
NHS Breach, HSE Bug Expose Healthcare Data in the British Isles
Mar 15, 2024
|
3 Min Read
byNate Nelson, Contributing Writer
Digital wireframe of car with digital background
ICS/OT Security
Heated Seats? Advanced Telematics? Software-Defined Cars Drive Risk
Heated Seats? Advanced Telematics? Software-Defined Cars Drive Risk
Mar 13, 2024
|
6 Min Read
byRobert Lemos, Contributing Writer
Pirate standing on treasure pile against ruined ships at sunset
Application Security
'PixPirate' RAT Invisibly Triggers Wire Transfers From Android Devices
'PixPirate' RAT Invisibly Triggers Wire Transfers From Android Devices
Mar 13, 2024
|
5 Min Read
byNate Nelson, Contributing Writer
South African flag
Cyberattacks & Data Breaches
Cyberattack Targets Regulator Database in South Africa
Cyberattack Targets Regulator Database in South Africa
Mar 12, 2024
|
1 Min Read
byDark Reading Staff
blue data lock electronic
Cyber Risk
To Spot Attacks Through AI Models, Companies Need Visibility
To Spot Attacks Through AI Models, Companies Need Visibility
Mar 11, 2024
|
6 Min Read
byRobert Lemos, Contributing Writer
Python coiled up on a branch
Application Security
Japan Blames North Korea for PyPI Supply Chain Cyberattack
Japan Blames North Korea for PyPI Supply Chain Cyberattack
Mar 11, 2024
|
4 Min Read
byJohn Leyden, Contributing Writer
Figurines standing on a piece of paper with arrows, indicating different paths
Cybersecurity Operations
CISO Corner: NSA Guidelines; a Utility SBOM Case Study; Lava Lamps
CISO Corner: NSA Guidelines; a Utility SBOM Case Study; Lava Lamps
Mar 8, 2024
|
10 Min Read
byTara Seals, Managing Editor, News, Dark Reading

Editor's Choice

Mitre company logo
Cyberattacks & Data Breaches
Top MITRE ATT&CK Techniques and How to Defend Against ThemTop MITRE ATT&CK Techniques and How to Defend Against Them
byNate Nelson, Contributing Writer
Apr 10, 2024
4 Min Read
A medical professional wearing scrub attire clicking on a screen in front of her
Cyberattacks & Data Breaches
Round 2: Change Healthcare Targeted in Second Ransomware AttackRound 2: Change Healthcare Targeted in Second Ransomware Attack
byDark Reading Staff
Apr 8, 2024
2 Min Read
A magnifying glass being held up in front of the apple logo
Vulnerabilities & Threats
Apple Warns Users in 150 Countries of Mercenary Spyware AttacksApple Warns Users Targeted by Mercenary Spyware
byDark Reading Staff
Apr 11, 2024
1 Min Read
Reports
More Reports
White Papers
More Whitepapers
Events
More Events
Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.
Subscribe