web application security Archives - Help Net Security

(IN)SECUREMagazine

bomb

IIS attacks surge from 2,000 to 1.7 million over last quarter

IIS, Drupal, and Oracle WebLogic web technologies experienced increased attacks in Q2 2018. According to a new threat report from eSentire, IIS attacks showed a massive …

architect

DevOps and digital transformation initiatives are creating insecure apps

October 8, 2018
CEO
CISO
cybersecurity

WhiteHat Security released its 2018 Application Security Statistics Report, “The Evolution of the Secure Software Lifecycle,” which identifies the security vulnerabilities and …

Dislike

The ultimate fallout from the Facebook data breach could be massive

Less than a week ago, Facebook announced that unknown attackers have managed to string together three bugs affecting the social media platform, which allowed them to steal …

Python

Python-based attack tools are the most common vector for launching exploit attempts

October 1, 2018
attack tools
exploit
Imperva

Hackers have an obvious predilection for Python-based attack tools, says Imperva. “When examining the use of Python in attacks against sites we protect, the result was …

Qualys CertView

Qualys Community Edition: Discover IT assets, manage vulnerabilities, scan web apps

In this podcast recorded at Black Hat USA 2018, Anthony Mogannam, Product Manager, SME/SMB Solutions at Qualys, talks about issues related to open source software and Qualys …

3d printing

Access misconfiguration opens 3D printers to remote attacks

Spurred by a report coming from a regular reader, SANS ISC handlers Richard Porter and Xavier Mertens searched for OctoPrint interfaces for 3D printers exposed online and …

web

Data from 316 million real-world attacks in AWS and Azure environments

In evaluating 316 million incidents, tCell found it clear that attacks against the application are growing in volume and sophistication, and as such, continue to be a major …

vulnerability

Same web-based vulnerabilities still prevalent after nine years

Analysis of vulnerabilities discovered by NCC Group researchers over the last nine years found that instances of common web-based vulnerabilities have largely refused to fall …

automate

Automating web app testing to secure your environment

In this podcast recorded at RSA Conference 2018, Dave Ferguson, Director, Product Management for Web Application Security at Qualys, talks about the challenges and benefits of …

architecture

Infrastructure-agnostic web app protection with virtual patching option

Signal Sciences announced the latest innovations for its Web Protection Platform. Its patented architecture provides security, operations and development teams with the …

Don't miss

AWS

New security feature to prevent Amazon S3 bucket misconfiguration and data leaks

code

Helping researchers with IoT firmware vulnerability discovery

Specops Password Policy

Review: Specops Password Policy

mobile work

Remote working may boost productivity, but also leave you vulnerable to attack

malware

Vaporworms: New breed of self-propagating fileless malware to emerge in 2019

IoT

IoT related security missteps cost enterprises millions

containers

Container strategies don’t take security seriously enough

Woman working on laptop

What’s keeping Europe’s top infosec pros awake at night?

patch

November 2018 Patch Tuesday: Microsoft fixes 63 flaws, one actively exploited zero-day

Pathe

BEC scammers stole €19m from film company Pathé

data

Cybersecurity and ethical data management: Getting it right

danger

Ransomware is the leading cyber threat experienced by SMBs