Blog - Cyber Security Informer

Did You Read Our Most Popular 2020 Blog Posts?

Veracode Security

JANUARY 26, 2021

But we are going to carry on with our annual look-back at our most popular blogs from the previous year. we find out what resonated with security professionals and developers, uncover trends, and learn what people have questions or concerns about. Did you catch all these popular blog posts? Developer security training.

Education

Education Software Hacking

The Complete Guide to Securing Your Software Development Lifecycle

Security Boulevard

JANUARY 18, 2022

How to improve the security of your application with strong DevSecOps. The unfortunate reality is this: application security is in an abysmal state. Industry research reveals that 80% of tested web apps contain at least one bug. Make application security a part of the Software Development Lifecycle (SDLC).

Software

Software Technology Penetration Testing Mobile

5 Application Security Standards You Should Know

Security Boulevard

DECEMBER 21, 2021

It shouldn’t be surprising that application security has become more important over the last few years. Application Security (AppSec) is now fundamental to ensuring continued business stability. OWASP Application Security Verification Standard (ASVS). Level 2: applications containing sensitive data, recommended for most apps.

Software

Software Architecture Risk Penetration Testing

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Ten Ways OWASP Improves AppSec

Security Boulevard

NOVEMBER 9, 2021

Top ten OWASP resources that improves your application security. Employee cybersecurity training is ranked as one of the top three categories where many companies are increasing security spending. This demand for better training highlights the incredible value offered by OWASP , the Open Web Application Security Project.

Mobile

Mobile Software Risk Firewall

IAST, IaC, Secrets: A Guide to App Sec Tools

Security Boulevard

AUGUST 11, 2021

We covered several acronyms common in application security in a previous post : SAST, DAST, and SCA. Interactive application security testing (IAST). Interactive application security testing (IAST) is a fairly involved process. The tester looks for security issues while running the application simultaneously.

Software

Software Password Management Passwords Architecture

3 Best Practices for Improving Mobile Device Security on Your Network

Duo's Security Blog

JANUARY 9, 2023

This leaves security teams scrambling to implement best practices for mobile device security. Fortunately, Duo makes implementing mobile security policies simple. These policies are geared to protect your organization when access devices don't meet your security needs.

Mobile

Mobile Encryption Authentication Data breaches

Test Automation for Application Security

Cisco Security

APRIL 5, 2021

This blog is co-authored by Matthew McCullough and is part three of a four-part series about DevSecOps. Previously, the series explored a framework for continuous security and looked at one aspect of maintaining application security, a software Bill of Materials (BOM,) and associated vulnerabilities. But beware.

Penetration Testing

Penetration Testing Engineering Software Internet

Unveiling the Threat Landscape: Exploring the Security Risks of Cloud Computing

Centraleyes

FEBRUARY 25, 2024

However, critical security risks and threats inherent in cloud environments come alongside the myriad benefits. This blog aims to dissect the nuances of cloud security risks , shedding light on the challenges commonly faced when securing digital assets in the cloud. Who’s Responsible for Security in the Cloud?

Risk

Risk Encryption Social Engineering Authentication

Best Practices for Application Security in the Cloud

Security Boulevard

JANUARY 27, 2022

An overview of threats and best practices in all stages of software development in the cloud. The future of application security is in the cloud. Software development and application deployment continue to move from on-premise to various types of cloud environments. Photo by Daniel Páscoa on Unsplash.

Software

Software Risk Encryption Accountability

GUEST ESSAY: The case for complying with ISO 27001 — the gold standard of security frameworks

The Last Watchdog

FEBRUARY 26, 2023

Of the numerous security frameworks available to help companies protect against cyber-threats, many consider ISO 27001 to be the gold standard. The most recent updates came in October 2022, when ISO 27001 was amended with enhanced focus on the software development lifecycle (SDLC).

Cyber threats

Cyber threats Software Risk CISO

Attacks against machine learning — an overview

Elie

MAY 30, 2018

This blog post survey the attacks techniques that target AI (artificial intelligence) systems and how to protect against them. which are specially crafted inputs that have been developed with the aim of being reliably misclassified in order to evade detection. Data poisoning attacks. competitor content or as part of revenge attacks).

Accountability

Accountability Artificial Intelligence Engineering Retail

Story of the year: the impact of AI on cybersecurity

SecureList

DECEMBER 11, 2023

Over the past twelve months, this abbreviation has resonated across innumerable headlines, business surveys and tech reports, firmly securing a position as the Collins English Dictionary’s 2023 Word of the Year. The same survey states that 79% of respondents across all job titles are exposed to generative AI either at work or at home.

Cybersecurity

Cybersecurity Artificial Intelligence Technology Risk

Attacks against machine learning — an overview

Elie

MAY 30, 2018

This blog post survey the attacks techniques that target AI (artificial intelligence) systems and how to protect against them. which are specially crafted inputs that have been developed with the aim of being reliably misclassified in order to evade detection. Data poisoning attacks. competitor content or as part of revenge attacks).

Accountability

Accountability Artificial Intelligence Engineering Retail

AppSec Tips for Vue.js Users

Security Boulevard

MAY 21, 2021

If you’re leveraging this lightweight framework for your apps, here are some security tips to keep in mind during and after development. documentation includes a list of security best practices that you should follow. comes with built-in features to keep you secure (e.g., In some cases, Vue.js

Software

Top Cybersecurity Accounts to Follow on Twitter

eSecurity Planet

DECEMBER 3, 2021

Here are the top Twitter accounts to follow for the latest commentary, research, and much-needed humor in the ever-evolving information security space. Our review considered experience in enterprise cybersecurity, contributions to research and real-time developments, and Twitter-specific metrics like following and activity frequency.

Accountability

Accountability Cybersecurity Penetration Testing InfoSec

8 AppSec Metrics You Should Be Monitoring

Security Boulevard

JANUARY 6, 2022

Application Security today is an increasingly data-driven practice that benchmarks success on measurable improvements in code quality and code security. This post will cover metrics you should be monitoring for application security and why they matter. What is Application Security?

Penetration Testing

Penetration Testing Software Architecture Risk

Key Considerations When Choosing a SAST

Security Boulevard

DECEMBER 15, 2021

We take a look at 11 key criteria when choosing a static analysis tool for modern code. For companies writing and maintaining software at scale today, SAST (Static Application Security Testing) has become an essential tool for increasing code security and reducing cyber risk. Photo by Caleb Jones on Unsplash.

Software

Software Technology Risk Ransomware

Intro to phishing: simulating attacks to build resiliency

Security Affairs

APRIL 21, 2023

Email security provider Proofpoint’s 2023 State of the Phish report reflects an ever-escalating financial loss attributed to phishing attacks but also highlights the importance of how appropriate end-user behavior greatly reduces organizational impacts arising from them.

Phishing

Phishing Social Engineering Security Awareness Passwords

Human Hacking Conference – Year BETA

Security Through Education

APRIL 26, 2021

Running the SEVillage at various security conferences inspired Chris to create a unique conference that explored human behavior in its various forms. Running the SEVillage at various security conferences inspired Chris to create a unique conference that explored human behavior in its various forms.

Hacking

Hacking Social Engineering Engineering Phishing

The Hacker Mind Podcast: Hacking Ransomware

ForAllSecure

MAY 18, 2021

He also talks about his infosec journey hacking cryptocurrencies, joining the Digital Defense Service and CISA, and helping secure the 2020 presidential election… all before the age of 22. Vamosi: That's Chris Krebs, former director of the Cybersecurity and Infrastructure Security Agency under the US Department of Homeland Security.

Hacking

Hacking Ransomware Cryptocurrency Engineering

The Hacker Mind Podcast: Hacking Ransomware

ForAllSecure

MAY 18, 2021

He also talks about his infosec journey hacking cryptocurrencies, joining the Digital Defense Service and CISA, and helping secure the 2020 presidential election… all before the age of 22. Vamosi: That's Chris Krebs, former director of the Cybersecurity and Infrastructure Security Agency under the US Department of Homeland Security.

Hacking

Hacking Ransomware Cryptocurrency Engineering

Cisco Secure Democratizes Extension Security for Firefox and Edge

Duo's Security Blog

MAY 5, 2021

Two years ago, we released CRXcavator (pronounced crux-cavator), a free tool that examines the security hygiene and risks of Chrome extensions, looking at criteria such as permissions and security policy, and empowers users to make informed decisions about the extensions they use. Why extension security?

Risk

Risk Malware Mobile Accountability

MY TAKE: How Russia is leveraging insecure mobile apps to radicalize disaffected males

The Last Watchdog

DECEMBER 28, 2020

I’m not often surprised by cybersecurity news developments these days. Advertising practices. It vividly illustrates how threat actors have gravitated to hacking vulnerable mobile apps. The state of mobile app security is poor. Insecure mobile apps represent a huge and growing attack vector.

Mobile

Mobile Advertising Media Malware

Cyber Security Informer

Did You Read Our Most Popular 2020 Blog Posts?

The Complete Guide to Securing Your Software Development Lifecycle

Webinars

Trending Sources

5 Application Security Standards You Should Know

Webinars

Ten Ways OWASP Improves AppSec

IAST, IaC, Secrets: A Guide to App Sec Tools

3 Best Practices for Improving Mobile Device Security on Your Network

Test Automation for Application Security

Unveiling the Threat Landscape: Exploring the Security Risks of Cloud Computing

Best Practices for Application Security in the Cloud

GUEST ESSAY: The case for complying with ISO 27001 — the gold standard of security frameworks

Attacks against machine learning — an overview

Story of the year: the impact of AI on cybersecurity

Attacks against machine learning — an overview

AppSec Tips for Vue.js Users

Top Cybersecurity Accounts to Follow on Twitter

8 AppSec Metrics You Should Be Monitoring

Key Considerations When Choosing a SAST

Intro to phishing: simulating attacks to build resiliency

Human Hacking Conference – Year BETA

The Hacker Mind Podcast: Hacking Ransomware

The Hacker Mind Podcast: Hacking Ransomware

Cisco Secure Democratizes Extension Security for Firefox and Edge

MY TAKE: How Russia is leveraging insecure mobile apps to radicalize disaffected males

Stay Connected