Vulnerabilities in Apple products alert
Monday, September 30, 2024 by Richard Harris
CERT-In has recently issued Advisory CIAD-2024-0046, highlighting multiple high-severity vulnerabilities in Apple products. The vulnerabilities affect a wide range of Apple software, including iOS versions prior to 18, iPadOS versions prior to 18, macOS Sonoma versions prior to 14.7, macOS Ventura versions prior to 13.7, and the upcoming macOS Sequoia versions prior to ...
PayPal Developer Day registration opens
Thursday, August 15, 2024 by Austin Harris
PayPal is set to host its Developer Day for Fastlane on August 20-21, 2024, at its headquarters in San Jose, CA. This event will offer a comprehensive overview of integrating Fastlane with PayPal Complete Payments (PPCP) and Braintree. Attendees will benefit from technical sessions covering REST APIs, JavaScript SDKs, and GraphQL APIs, along with hands-on coding labs an...
RadQuest web3 gamified onboarding platform lands from Radix
Thursday, August 8, 2024 by Brittany Hainzinger
Radix launches RadQuest, a fully mobile-ready Web3 gamified onboarding platform designed to enable anyone to easily and confidently use Web3 and DeFi on Radix. RadQuest is the latest milestone in Radix’s Breakout2024, a year of initiatives designed to build momentum in the ecosystem.
Built-in collaboration with leading digital product studio ustwo, developers o...
AWS App Studio lands from Amazon
Friday, August 2, 2024 by Richard Harris
At AWS Summit New York, Amazon Web Services, Inc. (AWS), announced the release of AWS App Studio, a generative artificial intelligence (AI)-powered service that uses natural language to create enterprise-grade applications. A user simply describes the application they want, what they want it to do, and the data sources they want to integrate with, and in just minut...
Social engineering takeover attacks are on the rise
Thursday, April 18, 2024 by Brittany Hainzinger
OpenSSF and the OpenJS Foundation (home to JavaScript projects used by billions of websites worldwide) are alerting open-source project maintainers of social engineering takeover attacks, following new attack attempts they’ve witnessed similar to the XZ Utils incident.
The OpenJS Cross Project Council received suspicious emails, imploring OpenJS to update one o...
Verizon API portal brings 5G network to developers
Monday, February 19, 2024 by Richard Harris
Verizon network Application Programming Interfaces (APIs), which enable the developer community to access network services and capabilities, will be accessible to developers globally through various API aggregators, hyperscalers, and through Verizon’s own API portal. The incorporation of Verizon network services available through APIs into applications allow enter...
Face authentication for vehicles unveiled at MWC 24 by trinamiX
Friday, February 2, 2024 by Richard Harris
Visitors to the Mobile World Congress can find out more about trinamiX’s sensing solutions for consumer electronics and automotive and experience them up close at booth E68 in hall 6 from February 26th to 29th. trinamiX GmbH is bringing its Face Authentication with liveness detection for smartphones and vehicles to Barcelona. The company will also showcase its Con...
AI cybersecurity impacts according to NetLib Security
Monday, December 18, 2023 by Richard Harris
This is an easy call to make: NetLib Security predicts that Artificial Intelligence - Generative AI - will continue to heavily impact the world of cybersecurity, upping the game for defensive players, while giving cybercriminals more tools on the offensive side.
2023 was a year in which AI seemed suddenly to be everywhere. Although AI is not a new field, ChatGPT and ...
API security risks report exposes Netflix and Wordpress
Monday, November 27, 2023 by Richard Harris
Wallarm, the end-to-end API and app security company, announced the release of its Q3-2023 Wallarm API ThreatStats report. The quarterly report details the surge in threats centered around APIs and uncovers critical vulnerabilities, like injections and API data leaks, that have recently impacted leading firms, including Netflix, VMware, and SAP.
The new report i...
Oxeye discovers vulnerability in HashiCorp Vault Project
Tuesday, April 25, 2023 by Freeman Lightner
Oxeye announced the discovery of a new vulnerability in the HashiCorp Vault Project that has now been patched. HashiCorp Vault is a popular identity-based secret and encryption management system used to control access to API encryption keys, passwords, and certificates. The vulnerability was automatically discovered and reported by the Oxeye Platform during a deployment...
Identity will hold the keys to the kingdom for cybercriminals
Wednesday, February 8, 2023 by Brittany Hainzinger
In 2023, identity will continue to hold the keys to the kingdom for cybercriminals. This is a continuation from 2022, with the Verizon Data Breach Investigations Report (DBIR) attributing 80% of basic web application attacks to the use of stolen credentials like passwords. Security incidents usually involve a variety of techniques, from social engineering to supply chai...
Speed up your Java development with kits from Vaadin
Monday, October 24, 2022 by Richard Harris
Vaadin announced the release of four Acceleration Kits designed to make it faster and easier to build and modernize Java applications for enterprise use. These new Acceleration Kits speed the integration of custom applications built with Vaadin Flow into enterprise authentication, observability, and Kubernetes environments. Vaadin Flow is a unique framework that le...
VMware Tanzu portfolio updates
Tuesday, July 26, 2022 by Freeman Lightner
VMware has announced multiple Tanzu portfolio updates to enhance the developer experience with the general availability of Tanzu Application Platform version 1.2 and Tanzu Mission Control Cluster Configuration. With these two updates, VMware is delivering solutions to help developers succeed without hampering innovation and agility.
VMware Tanzu portfolio updates
...
Zaxbys automates hiring process with Landed app
Monday, May 2, 2022 by Freeman Lightner
Landed, which provides the first end-to-end recruitment engine for the restaurant and hospitality industries, announced that multiple Zaxby's franchisees are now using the Landed app to automate and accelerate hiring for new store openings and existing stores.
Multiple Zaxby’s franchisees now using the Landed app to automate and accelerate hiring
One suc...
Change Data Capture adapter launches
Tuesday, March 29, 2022 by Brittany Hainzinger
Push Technology has announced the launch of a new Change Data Capture (CDC) Adapter. The adapter is particularly appropriate for event-driven use cases in IoT transportation data, global equity/derivative exchange market data, and retail and eCommerce.
The Diffusion Platform-Gateway has an array of adapters to capture all forms of data feeds, the latest addition to i...
Testing App for API calls lands from Speedscale
Wednesday, January 19, 2022 by Brittany Hainzinger
Speedscale, the API test-automation software company, today launches Speedscale CLI, a free observability tool that inspects detects, and maps API calls on local applications or containers. The offering underscores the importance of continued and proactive API testing to quickly detect and debug defects within a shifting array of upstream and downstream interdependencie...
Security compliance predictions for 2022
Tuesday, January 18, 2022 by Freeman Lightner
Edward Tuorinsky is the Managing Principal of DTS, a Service-Disabled Veteran-Owned Small Business, that provides information technology and management consulting services in the areas of program management, governance, strategic planning, organization advancement, business process efficiency, software development, system integration, and learning enhancement solutions....
Future of AI in 2022
Friday, January 7, 2022 by Freeman Lightner
With the tech industry already facing a talent gap before the pandemic, companies have only doubled down on efforts to boost tech talent. In fact, 61% of HR professionals reported that finding qualified developers would present their biggest recruitment challenge of 2021. As we round the corner to 2022, what does it mean for developers and computer science professi...
Cloud and cyber asset management trends for 2022
Thursday, January 6, 2022 by Richard Harris
Companies have been racing to mature their technologies and pursue digital transformations in the last few years, as a way to gain or maintain competitive advantage and resilience. This has led to an emerging area of focus: cyber asset management. Organizations are now taking inventory of their IT infrastructure and prioritizing more agile cyber asset management process...
Matthew Halliday predicts 2022
Wednesday, January 5, 2022 by Brittany Hainzinger
Matthew Halliday, Executive Vice President, Product Strategy and Co-Founder at Incorta is a veteran software engineer and data analytics expert, he co-founded Incorta in 2013 after more than 15 years at Oracle and several years managing products at Microsoft. With over 20 years of experience developing products and taking them to market, Matthew has served in several ke...
Mitigating API attacks in 2022
Wednesday, January 5, 2022 by Richard Harris
Nathanael Coffing, co-founder and CSO of Cloudentity, is also a board member. Nathanael has over 20 years of management and architecture experience across identity, security, microservices, and IT domains. Prior to founding Cloudentity, he founded OrchIS.io and helped build numerous technology startups leveraging his experience at Sun, Oracle, Imperva, Washington Mutual...
Artificial Intelligence authentication in 2022
Tuesday, January 4, 2022 by Brittany Hainzinger
Sanjay Gupta, Global Head of Product, at Mitek shares his 2022 predictions on the rise of touchless technologies, the impacts of digital banking, and the increasing use of voice and behavioral biometrics to verify identification.
Touchless technology will gain adoption in new industries
Technology designed to reduce friction in consumer behavior and improve t...
Neural decision processor launches from Syntiant
Wednesday, October 6, 2021 by Brittany Hainzinger
Syntiant Corp has introduced the Syntiant NDP200 Neural Decision Processor (NDP), the company's first chip designed for vision processing that can provide highly accurate inference at under 1mW.
NDP200 neural decision processor from Syntiant
Packaged with the Syntiant Core 2, the NDP200 can ...
Protecting source code
Wednesday, October 6, 2021 by Nigel Thorpe
Earlier this year, EA (Electronic Arts), reported a cyberattack and the theft of some 780GB of source code for games such as FIFA 21 and the proprietary Frostbite game engine used for many other high-profile games such as Battlefield. The threat actors responsible for the EA data breach put the stolen data up for sale on an underground hacking forum for $28 million, pro...
Amazon location service launches
Monday, August 23, 2021 by Freeman Lightner
Amazon Web Services, Inc. announced the general availability of Amazon Location Service, a new service that makes it easier and more cost-effective for customers to add location functionality to their applications without compromising on user privacy or data security. With Amazon Location Service, customers can embed location functionality in their applications usi...
Cloudentity selects customer identity and access management leader
Tuesday, June 22, 2021 by Brittany Hainzinger
Cloudentity has selected customer identity and access management (CIAM) leader Simeio as a delivery partner to accelerate its flexible and scalable solutions for authorization governance automation. Supporting strict Open Banking compliance standards, as well as PSD2, Cloudentity has more than doubled its year-over-year sales growth and has...
Developer edition of Incognia fraud prevention solution has launched
Tuesday, May 4, 2021 by Brittany Hainzinger
Incognia announced the launch of its Developer Edition, a free version of Incognia’s mobile fraud prevention solution for mobile app developers. The offering allows mobile developers to add frictionless fraud prevention to fintech and mcommerce apps, enabling superior UX design and account security within their apps. Developers benefit from Incognia’s rapid ...
GitHub secrets reveal API keys, usernames, passwords, and more exposed
Tuesday, March 30, 2021 by Richard Harris
Over two million secrets have been detected on public GitHub in 2020 and this number is growing 20% Year-Over-Year, a GitGuardian State of Secrets Sprawl on GitHub Report shows.
This growing volume of sensitive data or secrets, like API keys, private keys, certificates, usernames and passwords end up publicly exposed on GitHub, putting corporate security at...
Infrastructure as code announced by env0
Monday, March 15, 2021 by Brittany Hainzinger
env0 announced the company’s enterprise-grade Infrastructure as Code (IaC) automation platform featuring self-hosted agents, SAML (Security Assertion Mark-up Language) authentication support and SOC2 Type 2 certification. The enhanced platform delivers production proven remote-run workflow management and a new security framework to empower user deployments and dir...
Nureva toolkit to give developers access to cloud-based APIs
Thursday, February 4, 2021 by Brittany Hainzinger
Nureva Inc. announces the Nureva Developer Toolkit to give developers secure access to a growing collection of cloud-based APIs for Nureva audio systems. Using APIs for device management and device control, third-party and in-house developers can easily access device information, update firmware and control settings. Customers can now automate daily routine tasks and le...
Report reveals one third users delete apps after getting locked out
Friday, November 20, 2020 by Brittany Hainzinger
ForgeRock announced the release of volume two of its global report, “The New Normal – Living Life Online.” The study polled 5,000 consumers throughout the U.S., U.K., Germany, Australia and Singapore to understand consumer preferences when it comes to online experiences, including how they log in and what app features they value most. The report a...
5 mistakes businesses make in application development
Friday, October 23, 2020 by Mayur S Shah
5 Mistakes Businesses Make While Prioritizing Speed Over Security in Application Development
Earlier this year, the Democratic party in Iowa announced its plans to use a smartphone app to calculate and transmit their caucus results. One would think that by using technology to improve the speed of governance, what could possibly go wrong? A lot, apparently. The a...
What you are missing about DevOps
Friday, July 24, 2020 by Richard Harris
DevOps and Kubernetes has challenges but most of them are centered around common misunderstandings or rushing into things too quickly. Kevin Crawley is a Developer Advocate at Containous and offers his thoughts with ADM about how you can overcome many of the challenges, along with some sharing some best practices, and even the solution to the prisoner’s dilemma.
...
Scaling applications for COVID-19 spikes
Thursday, July 23, 2020 by Nikita Ivanov
The COVID-19 pandemic has led to shelter-in-place and lockdown orders that are dramatically changing both business and consumer behavior. Online activity is soaring, and many businesses, such as those in food delivery, ecommerce and remote access and collaboration services, are experiencing exploding demand for their services. Many of these businesses have struggled to ...
Docker and Snyk partner to deliver container vulnerability scanning
Wednesday, May 20, 2020 by Brittany Hainzinger
Docker has partnered with Snyk to deliver native vulnerability scanning of container images in Docker. Together, Docker and Snyk will provide a streamlined workflow that makes the application development process more secure for millions of developers, allowing them to more quickly and confidently build secure applications as an automated part of their toolchain.
...
