July 29, 2015 XSS Vulnerability Crossed Out in New WordPress Version 2 min read - WordPress update 4.2.3 crossed out a critical XSS vulnerability — the latest in a long line of flaws that put websites running the CMS at risk.
July 29, 2015 Break a Leg? New Android Vulnerability Takes Center Stage 2 min read - Native app StageFright is the newest Android vulnerability to come to light. How can users protect their mobile devices from the onslaught of threats?
Application Security July 29, 2015 Static Analysis Security Testing: How to Get the Most From It 2 min read - When used appropriately, static analysis security testing solutions can be an effective part of a security program, but it shouldn't stand alone.
Advanced Threats July 15, 2015 Building a Cyberattack: Social Engineering, Zero-Day Vulnerabilities and More 3 min read - Many cybercriminals today use social engineering as a means of carrying out attacks. In fact, this method is among the most popular attack types.
July 15, 2015 Could Open-Source ‘Census Project’ Prevent the Next OpenSSL Flaw? 2 min read - The Core Infrastructure Initiative has released a ranking of open-source tools that should help the industry avoid problems in OpenSSL and similar tools.
Application Security July 8, 2015 Mitigate Business Risk Strategically With Application Security Management 4 min read - Enterprises must do their best to prioritize application security and limit its related risks, which takes proactive measures as well as proper management.
Application Security July 2, 2015 Does NoSQL Equal No Injection? 3 min read - NoSQL data storage systems have become popular due to their scalability and flexibility. This blog addresses some possible risks of the databases.
Data Protection June 24, 2015 Is PCI Compliance Enough to Protect Us From Advanced Threats? 2 min read - The security standards being adopted by the payment card industry (PCI) are not without vulnerabilities that could leave personal information at risk.
June 15, 2015 Cybersecurity Risk: Right Resources, Wrong Place Put Companies Under Threat 2 min read - Seventy-five percent of companies say they aren't mature enough to handle cybersecurity risk. The biggest problem? Poor resource allocation.
June 15, 2015 New OpenSSL Releases Clear Logjam, Target Minor Flaws 2 min read - Multiple new OpenSSL releases finally clear the Logjam flaw and address other low-to-moderate vulnerabilities plaguing the encryption software.