Open Bug Bounty has fixed 1 million vulnerabilities
Monday, November 7, 2022 by Brittany Hainzinger
Open Bug Bounty is an open, disintermediated, cost-free, and community-driven Bug Bounty platform for coordinated, responsible, and ISO 29147 compatible vulnerability disclosure. It passed the milestone on 27 October of fixing over 1,000,000 web security vulnerabilities.
The Open Bug Bounty project enables website owners to receive advice and support from&n...
MachineWare RISC-V simulator for software developers
Wednesday, June 29, 2022 by Brittany Hainzinger
MachineWare is set to revolutionize semiconductor design with its high-speed functional RISC-V simulator, SIM-V.
SIM-V, the company’s flagship product, combines unprecedented simulation performance with exceptional customizability for applications ranging from the tiniest embedded devices to warehouse-scale supercomputers. SIM-V enables software developers to t...
ImmuniWeb Neuron web security scanning
Friday, June 10, 2022 by Richard Harris
ImmuniWeb has announced the launch of ImmuniWeb Neuron, a web application and API web security scanning solution that is based on the award-winning ImmuniWeb AI Platform available.
ImmuniWeb Neuron is designed to rapidly scan tens, hundreds, or even thousands of web applications and APIs for vulnerabilities, weaknesses, and misconfigurations. It c...
Microsoft DART team tracks 77k active web shells
Thursday, February 6, 2020 by Brittany Hainzinger
In a blog post promoting the capabilities of its commercial security platform, Microsoft said that on a daily basis the company's security team detects and tracks on average around 77,000 active web shells, spread across 46,000 infected servers.
According to ZDNet, these numbers are staggering, since the 77,000 figure is far larger than any previous reports about...
Finding website risk levels and reputations gets easier for IT admins
Monday, May 13, 2019 by Richard Harris
NetMotion Software announced NetMotion Reputation, a subscription service that identifies the risk profile and usage categories of hundreds of millions of web domains. Reputation allows IT teams to get visibility into user behavior, including a better understanding of access to risky or inappropriate cloud applications and websites. Customers can also block access if an...
How the reddit security breach reminds us to be careful
Monday, August 6, 2018 by Austin Harris
reddit recently disclosed in their announcements feed of a security breach into their system which the hacker "managed to access some user data, including some current email addresses and a 2007 database backup containing old salted and hashed passwords." Include in the disclosed information was some reddit source code and some log files.
They went on to sa...
What some experts are saying about GDPR
Friday, May 18, 2018 by Austin Harris
The GDPR bill is causing an uproar in the industry as the compliance date comes ever nearer. Yet few can say they actually know much about the bill that will come into place on May 25th.GDPR, or the General Data Protection Regulation, is an expansion upon the EU’s previous Data Protection Act of 1998, extending the boundary of its territorial mandate from whatever juris...
Multicloud app network platform update launched by MuleSoft
Tuesday, May 15, 2018 by Austin Harris
Making a multi-cloud app just got a little easier thanks to MuleSoft's latest release of their Anypoint Platform. It features new capabilities that aim to give developers the ability to easily deploy, secure and monitor composite applications across cloud environments. Anypoint Platform unlocks the power of API-led connectivity, allowing organizations to connect apps, d...
CEO Roundtable participants announced for Telecom Exchange NYC 2018
Wednesday, May 9, 2018 by Austin Harris
Jaymie Scotto & Associates (JSA), founder and host of the C-Level networking event series, the Telecom Exchange (TEX), announced its CEO Roundtable participants and topics for its 2018 TEX NYC event, taking place June 19-20 in Hoboken, NJ. The event will feature four CEO Roundtables, providing a major platform for tech, telecom and content thought leaders to deliber...
Netskope unifies enterprise cloud and web security
Thursday, April 5, 2018 by Austin Harris
Netskope has announced the general availability of Netskope for Web, an expansion of the Netskope Cloud Security platform that enables safe web use for enterprise organizations. Powered by the same cloud-native architecture and patented Cloud XD technology of the award-winning and market-leading Netskope cloud access security broker (CASB), Netskope for Web uniquely und...
A Blockchain messaging platform that's unstoppable
Tuesday, April 3, 2018 by Richard Harris
Today’s instant messaging is about to get a violent shove forward by way of encryption, and Blockchain. Almost all messaging platforms rely on client to server communication, where a unique ID is given to a thread, and stored in a centralized database somewhere. But it’s always been volatile to censorship, network blocking, or any other form of controlled policing....
DigiCert reaches milestone for replacing Symantec certs
Tuesday, March 20, 2018 by Austin Harris
DigiCert Inc. announced a major milestone: less than 1 percent of the top 1 million sites have yet to replace Symantec-issued certificates affected by upcoming browser distrust action. Mozilla released figures from its latest telemetry report earlier this week showing 1 percent with certificates to be untrusted.For site owners still affected by beta releases of Firefox ...
SlashNext launches AI internet threat protection system
Thursday, November 9, 2017 by Austin Harris
SlashNext announced the company’s broad market release of the SlashNext Internet Access Protection System to protect organizations from cross platform social engineering and phishing, malware, exploits and callback attacks. The system goes beyond first generation signature-based and second generation sandbox-based technologies and deploys artificial intelligence and cog...
Software developers are easy targets for hackers study finds
Thursday, July 20, 2017 by Richard Harris
Netsparker Ltd., a company in the web applications security industry, has released survey results showing that most software developers make themselves easy targets for hackers, even when they are behind a corporate firewall. The primary reason is not that their web server software is out of date, however. Instead, it is largely the result of developers running vulnerab...
Veracode sells to CA Technologies for $614M
Wednesday, March 8, 2017 by Austin Harris
CA Technologies announced it has signed a definitive agreement to acquire Veracode, a company that is securing web, mobile and third-party applications across the software development lifecycle, for approximately $614 million in cash. The transaction is expected to close in the first quarter of fiscal year 2018, and is subject to customary closing conditions, including ...
Webscale launches new WAF to thwart attacks on eCommerce sites
Thursday, March 2, 2017 by Richard Harris
Webscale has announced the launch of their Cloud Web Application Firewall (WAF), the first of a new line of a-la-carte solutions designed to address the pain points many businesses face with regards to the security, availability and performance of their critical web applications. While the market is flush with WAF solutions that combat malicious attacks at the edge of a...
Datadog APM released
Wednesday, February 15, 2017 by Austin Harris
Datadog has announced the general availability of Datadog APM (Application Performance Monitoring). This new feature extends the company’s existing infrastructure monitoring platform to now enable development and operations (DevOps) teams to quickly troubleshoot issues in complex, distributed applications that run across hybrid clouds and employ microservices, container...
Anchore Navigator adds more registries to find containers in
Wednesday, February 15, 2017 by Richard Harris
With nearly 500,000 images on DockerHub and thousands more hosted by cloud providers such as Amazon and Google, finding the right container image and keeping track of updates is becoming increasingly complicated. And that's not even mentioning the growing number of private registries hosted by independent software vendors.That's why Anchore, Inc. thinks that their free ...
Easily use blockchain with industrialgrade security systems
Monday, February 13, 2017 by Austin Harris
Accenture has unveiled their new solution that simplifies the ability of blockchain technology to integrate with the industrial-grade security systems that support sectors including financial services, healthcare and government. The solution creates a developer-friendly interface between emerging blockchain platforms and widely used hardware security technology. Accentu...
Introducing a web security ACL to block based on device fingerprints
Friday, February 3, 2017 by Richard Harris
Distil Networks, Inc., a bot detection and mitigation company, has announced a web application security Access Control List (ACL) platformA to block based on device fingerprints, providing a more effective way for website defenders to manage and apply whitelists and blacklists across their online applications."A key piece of feedback we got from our Bot Defense Council ...
Intel Security Enhances Unified Defense Architecture
Thursday, November 3, 2016 by Richard Harris
Intel Security has announced an enhanced unified defense architecture designed to empower organizations to more effectively protect a new digital economy of trust, time and money. No longer is our economy a physical one, but one of connected networks and systems where cybercriminals have put us on the defensive. This new second economy, has put us in a world where ...
New Varnish API Engine V2.0 Meets a Minimum of 23,000 API Calls
Thursday, October 15, 2015 by Richard Harris
Varnish Software has released Varnish API Engine V2.0, which increases the performance of the previous version to a minimum of 23,000 API calls per second (for the standard three node server cluster) to meet the requirements of high volume mobile, IoT and CDN web applications.The API Engine was created to meet the needs of high traffic volume. V2.0 also offers a new gra...
AppSecUSA Security Conference to Delve Into Application and Cloud Security
Friday, September 11, 2015 by Stuart Parkerson
There is still time to participate in OWASP's 12th Annual AppSecUSA Security Conference designed for developers and security experts focusing on application and cloud security. The conference will be held in San Francisco on September 24-25 and a separate two day training program will be offered September 22-23.Held at the Hyatt Regency San Francisco, more than 40 speak...
NT OBJECTives Offers New On Demand Mobile Security Testing
Friday, April 18, 2014 by Richard Harris
NT OBJECTives, a provider of automated web application security solutions, is now offering the NTOMobile On-Demand platform powered by NTOSpider, a new security service specifically designed for mobile application testing, including mobile client native code and back-end web services. The platform delivers a way for security teams to complete comprehensive mobile a...