secure by design Archives

Director of the Cybersecurity and Infrastructure Security Agency, Jen Easterly

CISA Director Easterly to Leave When Trump Assumes Presidency

Jeffrey Burt | November 19, 2024 | cisa, Cybersecurity, Donald Trump, Jen Easterly, secure by design

Jen Easterly, who took over as CISA director in 2021, will step down in January when Donald Trump takes over as president, creating an uncertain future for the critical cybersecurity agency and ...

Security Boulevard

Smarter AppSec: How ADR, Secure by Design and ‘Shift Smart’ are Redefining Cybersecurity | Application Security Podcast Takeaways | Contrast Security

Contrast Marketing | November 18, 2024 | ADR, Pen Test, pen testing, runtime protection, secure by design, shift smart, Threat Modeling

If there’s one thing Jeff Williams learned from years and years of doing pen testing and threat modeling, it’s this: They're highly time-pressured ...

AppSec Observer

AI emerging technology secure by design cybersecurity

World Economic Forum: AI, Quantum Require ‘Paradigm Shift’ in Security

Jeffrey Burt | October 17, 2024 | AI, Cybersecurity, Hybrid and Emerging Technologies, iot, Quantum Computers, secure by design, World Economic Forum

The World Economic Forum is advocating a shift in security thinking from secure by design to resilience by design in the face of the rapid development and expanding connectivity of emerging technologies ...

Security Boulevard

CISA and FBI Issue Alert on XSS Vulnerabilities

Rohan Timalsina | October 1, 2024 | cisa, CISA Alert, Cross-Site Scripting (XSS), Cross-Site Scripting (XSS) Attacks, Cyber threat landscape, Cybersecurity Best Practices, cybersecurity defense strategies, Cybersecurity Weaknesses, enterprise security, FBI, FBI alert, Linux & Open Source News, secure by design, Secure by Design Alert, Software Security, Vulnerability Management, XSS Vulnerabilities

Cross-site scripting (XSS) vulnerabilities continue to be a major concern in today’s software landscape, despite being preventable. CISA and FBI have issued a Secure by Design alert to reduce the prevalence of ...

TuxCare

CISA and FBI Issue Alert on OS Command Injection Vulnerabilities

Rohan Timalsina | July 23, 2024 | CISA Advisory, CISA Threat Update, Cisco Vulnerabilities, command injection, Command Injection Vulnerability, FBI alert, FBI warning, Ivanti Vulnerabilities, Linux & Open Source News, MITRE ATTACK, OS command injection, OS command injection prevention, OS command injection vulnerabilities, Palo Alto Networks, secure by design, Secure by Design Alert

CISA and FBI issued a critical advisory on July 10, 2024, urging software companies to review their products and eliminate OS command injection vulnerabilities at the source. This urgent call comes in ...

TuxCare

Cybersecurity Insights with Contrast CISO David Lindner | 6/14/24

David Lindner, Director, Application Security | June 14, 2024 | cyberattacks, MFA, secure by design, Secure from within, Vulnerabilities

Insight #1 How many breaches do we need to endure before we realize that multifactor authentication (MFA) is the most important factor in preventing the successful use of compromised credentials in data ...

AppSec Observer

CISA and FBI Issue Alert on SQL Injection Vulnerabilities

Rohan Timalsina | April 9, 2024 | CISA Threat Update, clop-ransomware, Cyber Threats, cybersecurity defense strategies, cybersecurity risks, cybersecurity threats, enterprise security, FBI alert, Linux & Open Source News, ransomware attacks, secure by design, SQL, sql injection, SQL injection attacks, SQL Injection Vulnerabilities, SQLi Vulnerabilities

SQL injection vulnerabilities, often abbreviated as SQLi, persist as a significant issue in commercial software products. In response to a recent highly publicized malicious campaign exploiting SQLi vulnerabilities in a managed file ...

TuxCare

OWASP Security Knowledge Framework

Daniel Longest | March 24, 2020 | AppSec, owasp, secure by design, security

In this talk (embedded below), brothers Glenn ten Cate and Riccardo ten Cate identify issues in current secure coding practices. They show how to use the Open Web Application Security Project’s security ...

Sonatype Blog

Big data analytics = Big security

Michael Boelen | August 24, 2013 | analytics, Audit, big data, project, secure by design, Security Program

In the last years big data has become a hot subject in the field of information technology and gaining more attention from our senior management. Companies are working on this “new” concept ...

The Next CISO