Pirate Chick Poses as VPN Tool, Secretly Installs Malicious Payloads
Malicious actors are bundling a Trojan called Pirate Chick, which looks like a virtual private network (VPN) software tool, into adware to install malware on infected machines.
A Brief History of Containerization: Why Container Security Best Practices Need to Evolve Now
Containerization empowers businesses to move apps across different platforms and environments. Here's why security best practices need to evolve.
Barium Group Using Backdoors in Trusted Software to Wage Supply Chain Attacks
A threat group known as Barium is exploiting trusted software updates and apps to conduct a wave of supply chain attacks, which could affect more than 1 million users around the world.
AppSec Insights From Think 2019: Four Steps to Optimize Your Application Security Program
Whether you're a small startup or an international enterprise, a successful application security program involves more than just scanning for vulnerabilities.
Putting the ‘S’ in IoT: How to Make Internet of Things Solutions Secure by Design
When developing and deploying internet of things solutions, achieving security by design is not as simple as picking a secure development life cycle (SDLC) framework and shifting your security left.
Rethinking the Industry’s Approach to the Cybersecurity Skills Gap
Until now, we've looked at the cybersecurity skills gap in a very broad sense, as if all security jobs and needs are equal. Maybe it's time we look at the skills gap problem in different ways.
Don’t Let Vulnerabilities Leave You Taxed — Refund Customer Trust With Application Security
How an organization handles application security goes a long way in determining whether it will be "taxed" by vulnerabilities in production or receive a nice refund of their customers' trust.
What Happens When Malware Sneaks Into Reputable Hardware, Applications and App Stores?
To avoid malware, always get hardware and software from authorized and reputable sources and vendors, right? But what happens when those same sources actually contain or deliver malicious payloads?
How to Balance Speed and Security in Your Application Security Program
To compete in today's software market, developers are under pressure to build quality code quickly. But DevOps processes that fail to account for application security are bound to miss critical flaws.
Is Cloud Business Moving too Fast for Cloud Security?
Businesses that want to advance cloud security at scale need to invest in both the people and the technology that will reduce risks.