Featured
06/13/2024
Microsoft’s Brad Smith acknowledges past security failures, outlines new initiatives
Not everyone was as harsh on Microsoft’s previous mistakes. Jeff Williams, co-founder and chief technology officer at application security software platform provider Contrast Security Inc., noted that “while it’s pretty obvious in hindsight that they made a mistake, I think commentators are judging them without seeing the whole picture.”
“The unfortunate reality is that software is far more complex than most people understand,” he said. “A single application is built from dozens of source code repos, hundreds of open-source libraries, multiple application frameworks, server software and often multiple language platforms. And Microsoft has tens of thousands of applications, each of which has vulnerabilities reported all the time by tools, penetration testers, customers and more.”
08/16/2023
CISA’s Secure by Design: Too much, too soon?
In April, the federal Cybersecurity and Infrastructure Security Agency (CISA).
08/15/2023
Former Military Officials: Chinese Hackers Penetrated Japanese Military Networks in 2020, Maintained Presence Into 2021
Speaking under condition of anonymity, former United States military officials have told the Washington Post.
08/11/2023
CISA Issues New Strategic Plan Outlining Alignment With National Cybersecurity Strategy Through FY 2026
For the second time since it was founded, the Cybersecurity and Infrastructure Security Agency (CISA).
08/10/2023
20 Hottest New Cybersecurity Tools At Black Hat 2023
At Black Hat 2023 this week, vendors are showcasing new products in segments including XDR, application security, vulnerability management and cloud security.
08/08/2023
What the OWASP Top 10 for LLMs Means for the Future of AI Security
The first industry standard for Large language models (LLMs) marks a turning point that could critically impact the adoption of LLMs in business environments.
08/04/2023
US CISA Urges Improvements to Key Computer Component
Unified Extensible Firmware Interface Should Be More Secure, Says Agency.
08/04/2023
CISA strategic plan aligns with National Cybersecurity Strategy
The Cybersecurity and Infrastructure Security Agency (CISA) on Friday released an update to its comprehensive strategic plan.
08/04/2023
Why we need to treat AI like a toddler - OWASP lists LLM vulnerabilities
The Open Worldwide Application Security Project (OWASP).
08/03/2023
Contrast Security releases assess feature for LLMs to protect against AI security threats
Contrast rules help teams that are developing software using the OpenAI application programming interface (API).
08/03/2023
Contrast Security helps organizations identify susceptible data flows to their LLMs
Contrast Security extends its application security testing (AST) platform to support testing of Large Language Models (LLMs) from OpenAI.
08/02/2023
We're in the OWASP-makes-list-of-security-bug-types phase with LLM chatbots