Application Security
Application security news, trends, analysis and practical advice
Flash Player update fixes zero-day flaw and 24 other critical vulnerabilities
Adobe Systems has released a security update for Flash Player in order to fix a publicly known vulnerability, as well as 24 privately reported security flaws.
Instagram pwned by 10-year-old Finn Jani -- Facebook pays $10,000
Instagram hacked by Jani, so Facebook gave him $10,000 because of his white-hat stylee. Also, it's good PR to be seen to reward a 10-year-old proto-researcher....
Facebook bug hunter finds a back door left by hackers on corporate server
A researcher found a PHP-based back door installed by hackers on one of Facebook's corporate servers.
Oracle releases 136 security patches for wide range of products
Oracle's latest quarterly security update contains 136 fixes for flaws in a wide range of products including Oracle Database Server, E-Business Suite, Fusion Middleware, Oracle Sun Products, Java and MySQL.
Adobe fixes 24 vulnerabilities in Flash Player, including an actively exploited one
Adobe Systems released a security update for Flash Player to fix 24 critical vulnerabilities, including one that hackers have been exploiting to infect computers with ransomware over the past week.
Massive app-layer attacks could defeat hybrid DDoS protection
Security researchers have recently observed a large application-layer distributed denial-of-service attack using a new technique that could foil DDoS defenses and could spell trouble for website operators.
How to fight off a zombie app-ocalypse
If zombie apps are attacking your company, you need to hire an application assassin.
Two-year-old Java flaw re-emerges due to broken patch
A two-year-old vulnerability in Java can still be exploited in the latest versions because the patch for it is ineffective, security researchers have found.
CSO50 2016 winners announced
The CSO50 recognizes 50 security projects, taken on by 45 organizations, that demonstrate outstanding thought leadership and business value. These are their stories.
5 critical updates for March Patch Tuesday
Following Microsoft’s recent practice of issuing large updates covering multiple versions of Microsoft IE, Office as well as both desktop and server OS platforms, the 13 updates for March probably represents the new “average” Patch...
Review: 5 application security testing tools compared
Users weigh in on favorite features, room for improvement.
Attackers can turn Microsoft's exploit defense tool EMET against itself
Hackers can easily disable the Microsoft Enhanced Mitigation Experience Toolkit (EMET), a free tool used by companies to strengthen their Windows computers and applications against publicly known and unknown software exploits.
Remote desktop tool distributed by Comodo enabled privilege escalation
Security software vendor Comodo patched a security weakness in its GeekBuddy remote PC support tool that could have enabled malware or exploits to gain admin privileges on computers.
The best antivirus apps for Windows PCs and Androids
AV-Test, a well-respected independent IT-security institute, announced the best antivirus award winners.
How to stop shadow IT
Security execs chime in on how to keep users from taking IT into their own hands.
Critical flaws patched in Magento e-commerce platform
The latest patches for the Magento e-commerce platform fix critical vulnerabilities that could allow attackers to hijack administrative accounts.
Serious flaw patched in Intel Driver Update Utility
A software utility that helps users download the latest drivers for their Intel hardware components contained a vulnerability that could have allowed man-in-the-middle attackers to execute malicious code on computers.
Post-acquisition, LastPass rolls out new version with more user interface bling
When a company gets acquired, its users generally hold their breath to see if the deal will be good or bad for customers. It seems LogMeIn's acquisition of LastPass was a positive move.
Recommended for You
-
White Paper
-
Video/Webcast
Sponsored -
White Paper
-
White Paper
Sponsored Links