It has been over a year since Google announced its commitment to provide a more secure web with HTTPS, and today the company is announcing it is making great strides. Google is releasing its public Transparency Report to detail the progress it’s made with HTTPS usage. According to the report, 64% of Chrome traffic on … continue reading
With great technology comes great risks. As new technology continues to emerge in this digital day and age, Carnegie Mellon University’s Software Engineering Institute (SEI) is taking a deeper look on the impact they will have. The institute has released its 2017 Emerging Technology Domains Risk report detailing future threats and vulnerabilities. “To support the … continue reading
Equifax announced a cybersecurity incident potentially impacting approximately 143 million U.S. consumers. According to the company, “criminals exploited a U.S. website application vulnerability to gain access to certain files.” As of now, the company has no evidence of unauthorized activity on Equifax’s core consumer or commercial credit reporting databases. “This is clearly a disappointing event for our company, and one … continue reading
SecurityScorecard’s annual U.S. State and Federal Government Cybersecurity Report was released today, and it paints a very grim picture of the government’s cyber health status. Across all of the industries surveyed, including transportation, retail, and healthcare, government organizations received one of the lowest security scores. Cybersecurity incidents show no signs of slowing down, and as … continue reading
Machine learning brings new opportunities in the software security realm by offering new ways to handle data, detect malware and improve solutions. However, the problem with machine learning today is that it can be marketed as a silver bullet to catch all things in the security industry, when in reality the technology still has many … continue reading
A new GraphQL server is now available for all Node.js frameworks. Apollo Server is a open-source GraphQL server that is community-maintained and works across: Express, Connect, Hapi, Joa, AWS Lambda, Restify and Micro. The Apollo team announced version 1.0 of the server this week. It is built for the community, for simplicity and for performance. … continue reading
Does the DevSecOps approach make a difference when it comes to improving application security? According to this year’s 12th annual WhiteHat Security “Application Security Statistics Report,” it certainly does. This year’s WhiteHat report includes a case study that details a large health organization’s successful implementation of a DevSecOps approach. According to the study, critical vulnerabilities … continue reading
LogiGear announced new continuous delivery findings as part of its software industry survey series designed to assess the state of software testing. This is the second survey in the four-part series. The survey on DevOps, and found most known pain points of transitioning to DevOps involves getting groups that don’t naturally work well together to have the … continue reading
The cloud provides huge benefits when it comes to agility and scale, but it also can cause major headaches and problems for businesses. The latter was evident last week when Deep Root Analytics, a data management platform provider, suffered from a data leakage. The leak resulted in data exposure of more than 198 million American … continue reading
New York’s plan to ramp up cybersecurity fit in with the overall tone of last night’s Pepcom Digital Experience event, held at the Metropolitan Pavilion in the city, proving that businesses are innovating on all security fronts. Whether it’s a device to protect hackers from getting into your devices, or it’s software to safeguard your … continue reading
New York City may turn into the next cybersecurity hub of the United States, thanks to New York Mayor Bill de Blasio’s 10-year plan to invest in new technological industries, raise wages, train New Yorkers, and overall strengthen the middle class. Today, the mayor announced “New York Works,” a series of 25 initiatives to spur … continue reading
Organizations are finding it increasingly difficult to identify dark endpoints, which not only costs enterprises millions of dollars, but also puts companies at risks for threats and attacks. According to new research from Absolute, an endpoint security company, and the Ponemon Institute, organizations are wasting over $6 million in detection, response, and wasted time. While … continue reading
