Безопасность • DZone Security • 8 апреля 2021 г. 17:28
This week, we check out the recent API vulnerabilities at VMware and GitLab, how URL parameters can lead to server-side request forgery (SSRF) vulnerabilities, and the upcoming webinar on some of the recent real-life API security flaws. Vulnerability...... читать далее
api apis api security newsletter cybersecuity ssrfБезопасность • DZone Security • 28 марта 2021 г. 13:33
With increased Cybersecurity challenges, firms are constantly battling to bring down the Mean Time to Detect/Discover (MTTD) of security threats. This is critical for multiple aspects such as customer satisfaction, legal compliance, and creditability...... читать далее
security analytics kibana logstash cybersecuity threat intelligence siem elastic stackБезопасность • DZone Security • 24 марта 2021 г. 19:30
First of all, Remote Desktop Protocol (RDP) is a network communications protocol developed by Microsoft mainly for remote access. The management of remote servers, virtual desktops, terminal servers, and applications is also done through a remote des...... читать далее
cloud computing cybersecuity virtual machine ransomware attacks ransomware preventionБезопасность • DZone Security • 12 марта 2021 г. 3:54
Software vulnerabilities have become a problem for people in almost every single industry, which has led many specialists to suggest that code needs to be made secure from the ground up. Since almost every type of business and governmental organizati...... читать далее
cryptography cybersecuity secuirty coding practicesБезопасность • DZone Security • 9 марта 2021 г. 0:36
There is a world war going on that people hardly talk about. While there aren't any physical explosions or military engagements, the threat is genuine and here to stay. This makes it important to take a page out of Sun Tzu's Art of War and think...... читать далее
cybersecuity infosec ethical hacking ethical hacker whitehatБезопасность • DZone Security • 4 марта 2021 г. 1:29
This week, we learn about the recent serious API vulnerability in VMware vCenter (if you have one, update ASAP!), why query and path parameters cannot be trusted for confidential data, how potential attacks can emerge from inconsistencies in JSON par...... читать далее
api json apis api security newsletter cybersecuity openapi vmware vulnerabilityБезопасность • DZone Security • 2 февраля 2021 г. 15:21
When it comes to cybersecurity, most people have a perception that it is the sole responsibility of the IT or Security department. However, in these changing times, internet security's responsibility does not lie on the shoulders of the technical eli...... читать далее
security it information technology cyber attack cybersecuity data breaches cybersecurity analysisБезопасность • DZone Security • 29 января 2021 г. 19:59
For years now, it's been clear that cloud storage was going to eventually supplant most on-premises data storage architectures. At the enterprise level, it's already happened. But further down the ladder, among small businesses, that's not the case y...... читать далее
cloud encryption cyber attack cybersecuity sso data room 2factor authenticationБезопасность • DZone Security • 26 января 2021 г. 15:31
Smartphones are an inseparable part of our lives. If our phone is taken away from us for even a day, for most of us it’s like being deprived of a basic need. We store all kinds of data in our phone – contacts, photos, videos, personal data, documents...... читать далее
security cybersecuity mobile security phishingБезопасность • DZone Security • 16 января 2021 г. 20:53
It is likely that after working remotely for over a year, companies around the world will soon expect their employees to return to the office. Whether you are working from home or office, it is smart to consider a few cybersecurity best practices so...... читать далее
security cybersecuity email securityБезопасность • DZone Security • 16 января 2021 г. 2:13
Most of you know me as an offensive security gal. The fact that I decided to join a SAST team frankly surprised me, as well. Now that I have officially started my job at ShiftLeft, I am taking this moment to reflect on how I got here and how I see th...... читать далее
security devops application security appsec static analysis security testing cybersecuity penetration testing sastБезопасность • DZone Security • 14 января 2021 г. 15:49
This week, we check out the recent API vulnerabilities at Facebook and Parler, there is a new GraphQL discovery tool called clairvoyance, and we have API security advice from Corey Ball. Vulnerability: Facebook Pouya Darabi found an API vulnerability...... читать далее
api facebook apis api security graphql newsletter cybersecuity api vulnerabilitiesБезопасность • DZone Security • 11 января 2021 г. 22:38
Developers are at the base of any software, and from the very early stages, they have to think not only about the performance and effectiveness of the product but also about its security. However, few programmers follow methods of writing secur...... читать далее
software development cybersecuity cyber attacks beginner developer code alignmentБезопасность • DZone Security • 27 декабря 2020 г. 2:38
According to Statista, there are 3.5 billion smartphone users. That means a lot of people could become victims of insecure mobile apps. The OWASP Mobile Top 10 list is a great resource for app developers who want to create secure apps. That's becaus...... читать далее
mobile security mobile security cybersecuity owasp top 10Безопасность • DZone Security • 17 декабря 2020 г. 1:37
What to make of this world driven by technology? Is it a benefit or a problem for society? The truth is, it’s both. While technology is the backbone of greater innovation, growth, and efficiency, it also opens the road to potential security breaches...... читать далее
security cybersecuity endpoint endpoint security edr endpoint detectionБезопасность • DZone Security • 10 декабря 2020 г. 22:19
Cybersecurity has turned out to be the greatest challenge for businesses in recent years. Just a year ago, data breaches exposed 4.1 billion records. As per the Cost of Data Breach Report by Ponemon Institute and IBM Security, a data breach's global...... читать далее
security automation cybersecuity ai and cybersecurityБезопасность • DZone Security • 23 октября 2020 г. 14:18
Observability for Application Security Is a Must-have It's not easy to tell modern security stories to users of legacy security solutions still attached to squeezing some fading security value from network-based perimeter walls. Organizations and the...... читать далее
devops devsecops cloud native cybersecuity observability appsec testingDevOps • DZone DevOps • 17 сентября 2020 г. 17:23
With an emerging pattern of organizations embracing the DevOps framework, adopting Microservice Architecture is steadily gaining the respect it deserves. While DevOps eliminate organizational silos by enabling efficient collaboration, streamlin...... читать далее
devops devsecops microservice cybersecuityБезопасность • DZone Security • 1 сентября 2020 г. 22:24
The novel coronavirus has forced companies around the world to make work-from-home mandatory for the foreseeable future. Employees are being asked to practice social distancing by working remotely to keep them safe as well as prevent the spread of th...... читать далее
security coronavirus work from home cybersecuity remote workerБезопасность • DZone Security • 6 августа 2020 г. 15:44
This week, we have recent vulnerabilities in Zoom and OkCupid, progress on the draft for OAuth 2.1, and a video tutorial on discovering leaky APIs. Vulnerability: Zoom Zoom has become the household name of the times, with plenty of face-to face activ...... читать далее
security integration api apis oauth api security newsletter cybersecuity oauth 2.0 api vulnerabilities
