A ransomware attack on a web hosting service provider has been problematic for several organizations, including the Oregon Secretary of State.Continue reading
Supply Chain Attack
Build in security and resilience with Infrastructure Security Month
Critical infrastructure is a system of other interconnected systems that are geographically dispersed and managed by multiple stakeholders. Infrastructure Security Month kicks off with the reminder that shared infrastructure is a shared responsibility.Continue reading
Software Composition Analysis and Defense-in-Depth
As the number and sophistication of attacks continues to increase, many organisations are adopting a defence in depth approach to cyber security. Continue reading
AppSec predictions 2021: Supply chain attacks are a greater threat to all industries
In this final post of the AppSec predictions series we look at supply chain attacks and why they will become a greater threat this year.Continue reading
Reviewing our 2019 AppSec predictions: Supply chain attacks
Magecart and similar attack groups have proven they are learning and effectively improving their attack tools.Continue reading
AppSec News Roundup: WordPress, Equifax, Oracle, and more
Breaches around the world, including some big names like Oracle, Equifax, Forbes, and Southwest Airlines. Continue reading
AppSec News Roundup: Docker, WordPress, bruteforce attacks, and more
These are the biggest #AppSec headlines of April 2019. I love the analogy of the...Continue reading
Application security trends through 2019 and beyond
2018 was a very long, eventful year in Application Security. There were many good things...Continue reading