Featured
06/13/2024
Microsoft’s Brad Smith acknowledges past security failures, outlines new initiatives
Not everyone was as harsh on Microsoft’s previous mistakes. Jeff Williams, co-founder and chief technology officer at application security software platform provider Contrast Security Inc., noted that “while it’s pretty obvious in hindsight that they made a mistake, I think commentators are judging them without seeing the whole picture.”
“The unfortunate reality is that software is far more complex than most people understand,” he said. “A single application is built from dozens of source code repos, hundreds of open-source libraries, multiple application frameworks, server software and often multiple language platforms. And Microsoft has tens of thousands of applications, each of which has vulnerabilities reported all the time by tools, penetration testers, customers and more.”
09/08/2022
Former Conti Ransomware Members Join Initial Access Broker Group Targeting Ukraine
The initial access broker (IAB) for ransomware gangs known as UAC-0098 has targeted Ukrainian organizations in five separate phishing campaigns spanning April to August.
09/02/2022
Identity’s Role in API Security
Digital identities play an important role in an organization’s security program.
08/30/2022
More scrutiny of DeFi platforms demanded after attacks, FBI warnings
The FBI’s public notice this week warning of growing exploits aimed at defrauding cryptocurrency customers was not exactly a surprise for industry experts who have noted the increase in attacks on decentralized finance (DeFi) platforms.
08/30/2022
State of Application Security – Jeff Williams, Contrast Security
Alan and Jeff discuss the current state and trends of application security as well as the latest news from Contrast Security.
08/26/2022
15 Tech Leaders On Why (And How) CTOs Should Find Time To Code
Many CTOs have moved into the C-suite from “the ranks”—they’re past developers and engineers whose skills and experience have helped them move into a leadership role.
08/26/2022
Three Unhelpful Quotes From 'Cybersecurity Lemmings'
CTO and Co-Founder of Contrast Security—helping companies become truly great at securing their apps and APIs.
08/26/2022
LastPass Suffers Data Breach, Source Code Stolen
Researchers warned that cyberattackers will be probing the code for weaknesses to exploit later.
08/26/2022
LastPass Hacked, Source Code, Proprietary Info Stolen
Stolen source code is a scary prospect for organizations.
08/25/2022
Lloyd’s refuses to cover nation-state attacks: What it means to enterprises
Data breaches aren’t cheap. With the average breach costing $4.24 million, many organizations are turning to cyber insurance to decrease the financial impact of security incidents.
08/25/2022
Zero-Day Vulnerabilities, Steve Wilson – Contrast Security
Steve Wilson, chief product officer for Contrast Security, explains what it really takes to cope with zero-day vulnerabilities.
08/22/2022
Lloyd’s: Companies must exclude coverage for state-based attacks and acts of war by 2023
Insurance marketplace provider Lloyd’s of London has informed insurance companies that they must exclude coverage for acts of war and state-based cyberattacks starting in March 2023.