Application Security

Application security news, trends, analysis and practical advice

Black Hat 2015
adobe systems headquarters san jose

adobe systems headquarters san jose

Adobe patches critical flaws in Flash Player, Reader and Acrobat

Adobe Systems released security updates for its Flash Player, Adobe Reader and Acrobat products fixing critical vulnerabilities that could allow attackers to install malware on computers.

code programming software bugs cybersecurity

This tool can help weed out hard-coded keys from software projects

A security researcher developed a tool that can automatically detect sensitive access keys that were hard-coded inside software projects.

Badlock vulnerability logo

Google researchers help test cryptographic flaws

Security experts from Google have developed a test suite that allows developers to find weaknesses in their cryptographic libraries and implementations.

adobe systems headquarters san jose

Adobe fixes critical flaw in Flash Player

Adobe Systems released security updates for several products, including one for Flash Player that fixes a critical vulnerability that's already known and exploited by attackers.

1 working

Common security mistakes in collaboration tools

Collaboration tools have become all the rage, but has your IT department closed all security gaps.

Android statues

Remote management app exposes millions of Android users to hacking

Poor implementation of encryption in a popular Android remote management application exposes millions of users to data theft and remote code execution attacks.

Adobe Flash player v10 icon

Adobe fixes flaws in Flash Player and Adobe Connect

Adobe Systems released security patches for its widely used Flash Player software as well as its Adobe Connect web conferencing platform that's popular in enterprise environments.

security thinkstock

Flaw in Intel CPUs could help attackers defeat ASLR exploit defense

A feature in Intel's Haswell CPUs can be abused to reliably defeat an anti-exploitation technology that exists in all major operating systems, researchers have found.

00 intro devops

7 ways DevOps can benefit CISOs and their security programs

Many organizations are regularly pushing out tens if not hundreds of releases and updates on a daily basis. With help and guidance from the security team, organizations can push secure releases on the first try and save lots of money...

security padlock on keyboard locked computer stock

Adobe fixes critical flaws in Flash Player and Digital Editions

Adobe Systems has fixed over 30 vulnerabilities in its Flash Player and Digital Editions products, most of which could be exploited to remotely install malware on computers.

microsoft headquarters

Microsoft bug bounty program adds .NET Core and ASP.NET Core

Microsoft has expanded its bug bounty programs to cover its open-source .NET Core and ASP.NET Core application development platforms.

todd mckinnon oktane15

Okta's API access product targets the trend toward services

Okta changed key parts of its product portfolio to attract new users to its corporate identity management and access control platforms.

hacker hacked unsecure theft passwords

Forget two-factor authentication, here comes context-aware authentication

The stakes are high and cloud vendors know it. Is context-aware authentication the next safety net?

social media applications 000019365398

Surefire security fail: One. App. At. A. Time.

A centralized approach that governs how apps interact and what they are allowed to do is essential.

code vulnerability software

Flaws in Oracle file-processing SDKs affect major third-party products

Seventeen high-risk vulnerabilities out of the 276 flaws fixed by Oracle on Tuesday also affect products from third-party software vendors, including Microsoft.

20151027 openworld oracle cloud signs

Oracle issues largest patch bundle ever, fixing 276 security flaws

Oracle has released a new batch of security updates for over 80 products from its software portfolio to fix 276 vulnerabilities.

Ubuntu China

Ubuntu Forums database breached

Ubuntu support forums users should be on the lookout for dodgy emails after the website's database of 2 million email addresses has been stolen.

microsoft headquarters

Microsoft fixes critical flaws in IE, Edge, Office and Windows print services

Microsoft's new batch of security patches fixes 47 vulnerabilities across its products, including in Internet Explorer, Edge, Office, Windows and the .NET Framework.

Load More