Application Security

Breaking news, news analysis, and expert commentary on application security, including tools & technologies.

A blue credit card on a fish hook being dangled above a computer keyboard
Application Security
Sneaky Skimmer Malware Targets Magento Sites Ahead of Black FridaySneaky Skimmer Malware Targets Magento Sites Ahead of Black Friday

A stealthy JavaScript injection attack steals data from the checkout page of sites, either by creating a fake credit card form or extracting data directly from payment fields.

byElizabeth Montalbano, Contributing Writer
Nov 27, 2024
|
1 Min Read
Chris Wysopal at Dark Reading News Desk at Black Hat USA 2024
Application Security
News Desk 2024: Can GenAI Write Secure Code?News Desk 2024: Can GenAI Write Secure Code?
byBecky Bracken, Senior Editor, Dark Reading
Nov 27, 2024
Hands holing and working a tablet, overlaid with charts
Application Security
Israel Defies VC Downturn With More Cybersecurity InvestmentsIsrael Defies VC Downturn With More Cybersecurity Investments
byRobert Lemos, Contributing Writer
Nov 27, 2024
1 Min Read
A still from the famous orgasm scene in "When Harry Met Sally"
Application Security
'RomCom' APT Mounts Zero-Day, Zero-Click Browser Escapes in Firefox, Tor'RomCom' APT Mounts Zero-Day, Zero-Click Browser Escapes
byNate Nelson, Contributing Writer
Nov 26, 2024
1 Min Read
Hooded figures on the Chinese flag cover with code
Application Security
Salt Typhoon Builds Out Malware Arsenal With GhostSpiderSalt Typhoon Builds Out Malware Arsenal With GhostSpider
byNate Nelson, Contributing Writer
Nov 26, 2024
1 Min Read
Images of nonfungible tokens clustered together on a screen with an index finger hovering above as if to press on one
Application Security
OpenSea Phishers Aim to Drain Crypto Wallets of NFT EnthusiastsOpenSea NFT Phishers Aim to Drain Crypto Wallets
byElizabeth Montalbano, Contributing Writer
Nov 26, 2024
1 Min Read
PR logo
Application Security
CyCognito Report Highlights Rising Cybersecurity Risks in Holiday E-Commerce
CyCognito Report Highlights Rising Cybersecurity Risks in Holiday E-Commerce
Nov 26, 2024
|
1 Min Read
The app logos for ChatGPT and Claude
Application Security
Faux ChatGPT, Claude API Packages Deliver JarkaStealer
Faux ChatGPT, Claude API Packages Deliver JarkaStealer
Nov 22, 2024
|
1 Min Read
byNate Nelson, Contributing Writer
puzzle pieces with combination lock to represent secure coding practices
Application Security
MITRE: Cross-Site Scripting Is 2024's Most Dangerous Software Weakness
MITRE: Cross-Site Scripting Is 2024's Most Dangerous Software Weakness
Nov 21, 2024
|
1 Min Read
byBecky Bracken, Senior Editor, Dark Reading
Green globe showing Africa
Cyber Risk
African Reliance on Foreign Suppliers Boosts Insecurity Concerns
African Reliance on Foreign Suppliers Boosts Insecurity Concerns
Nov 20, 2024
|
1 Min Read
byRobert Lemos, Contributing Writer
a view of a classroom in a school with tables and assignments on bulletin boards
Application Security
SWEEPS Educational Initiative Offers Application Security Training
SWEEPS Educational Initiative Offers Application Security Training
Nov 20, 2024
|
1 Min Read
byJennifer Lawinski, Contributing Writer
Words reading "Penetration test" on a blue screen
Vulnerabilities & Threats
Russian-Speaking Ransomware Gangs on the Hunt for Pen Testers
Russian-Speaking Ransomware Gangs on the Hunt for Pen Testers
Nov 19, 2024
|
1 Min Read
byDark Reading Staff, Dark Reading
Department of Homeland Security Logo has an eagle in the middle of the seal
Сloud Security
DHS Releases Secure AI Framework for Critical Infrastructure
DHS Releases Secure AI Framework for Critical Infrastructure
Nov 18, 2024
|
1 Min Read
byDark Reading Staff, Dark Reading
Microsoft logo on a building
Сloud Security
Microsoft Pulls Exchange Patches Amid Mail Flow Issues
Microsoft Pulls Exchange Patches Amid Mail Flow Issues
Nov 15, 2024
|
1 Min Read
byDark Reading Staff, Dark Reading
ChatGPT, typed out on a screen
Сloud Security
ChatGPT Exposes Its Instructions, Knowledge & OS Files
ChatGPT Exposes Its Instructions, Knowledge & OS Files
Nov 15, 2024
|
1 Min Read
byNate Nelson, Contributing Writer
Concept art of chain formed from glowy blue numbers
Application Security
Lessons From OSC&R on Protecting the Software Supply Chain
Lessons From OSC&R on Protecting the Software Supply Chain
Nov 15, 2024
|
1 Min Read
byNeatsun Ziv, CEO & Co-Founder, Ox Security
a brass two-handled trophy against a red curtain in the background.
ICS/OT Security
Frenos Takes Home the Prize at 2024 DataTribe Challenge
Frenos Takes Home the Prize at 2024 DataTribe Challenge
Nov 14, 2024
|
1 Min Read
byJennifer Lawinski, Contributing Writer
Meme showing ransomware groups ignoring cloud service providers and paying attention to PHP applications
Сloud Security
Cloud Ransomware Flexes Fresh Scripts Against Web Apps
Cloud Ransomware Flexes Fresh Scripts Against Web Apps
Nov 14, 2024
|
1 Min Read
byBecky Bracken, Senior Editor, Dark Reading
Microsoft Power Pages' website, under a magnifying glass
Cybersecurity Operations
Microsoft Power Pages Leak Millions of Private Records
Microsoft Power Pages Leak Millions of Private Records
Nov 14, 2024
|
1 Min Read
byNate Nelson, Contributing Writer
A laptop screen showing a blue screen of death
Сloud Security
2 Zero-Day Bugs in Microsoft's Nov. Update Under Active Exploit
2 Zero-Day Bugs in Microsoft's Nov. Update Under Active Exploit
Nov 12, 2024
|
1 Min Read
byJai Vijayan, Contributing Writer
Citrix logo on company building
Сloud Security
Citrix Patches Zero-Day Recording Manager Bugs
Citrix Patches Zero-Day Recording Manager Bugs
Nov 12, 2024
|
1 Min Read
byJai Vijayan, Contributing Writer
Thief in ski mask running away with laptop
Сloud Security
Citrix 'Recording Manager' Zero-Day Bug Allows Unauthenticated RCE
Citrix 'Recording Manager' Zero-Day Allows Unauthenticated RCE
Nov 12, 2024
|
1 Min Read
byTara Seals, Managing Editor, News, Dark Reading
Shadow of a hand over a keyboard
Application Security
Revamped Remcos RAT Deployed Against Microsoft Windows Users
Revamped Remcos RAT Deployed Against Microsoft Windows Users
Nov 11, 2024
|
1 Min Read
byBecky Bracken, Senior Editor, Dark Reading
Cambridge Analytica logo on top of Facebook logo
Application Security
Facebook Asks Supreme Court to Dismiss Cambridge Analytica Lawsuit
Facebook Asks Supreme Court to Dismiss Cambridge Analytica Lawsuit
Nov 11, 2024
|
1 Min Read
byJai Vijayan, Contributing Writer
Conceptual art of white circuits against a green background and padlocks to show some parts are protected.
Application Security
AI & LLMs Show Promise in Squashing Software Bugs
AI & LLMs Show Promise in Squashing Software Bugs
Nov 8, 2024
|
1 Min Read
byRobert Lemos, Contributing Writer
PR Logo
Application Security
Business Leaders Shift to Tangible AI Results, Finds New TeamViewer Study
Business Leaders Shift to Tangible AI Results, Finds New TeamViewer Study
Nov 7, 2024
|
1 Min Read
A store security mirror selfie
Cyberattacks & Data Breaches
China-Backed MirrorFace Trains Sights on EU Diplomatic Corps
China-Backed MirrorFace Trains Sights on EU Diplomatic Corps
Nov 7, 2024
|
1 Min Read
byBecky Bracken, Senior Editor, Dark Reading
A crossed out TikTok logo on a phone screen in front of a Canadian flag
Cyber Risk
Canada Closes TikTok Offices, Citing National Security
Canada Closes TikTok Offices, Citing National Security
Nov 7, 2024
|
1 Min Read
byNate Nelson, Contributing Writer
Cisco logo on a sign in front of trees
Vulnerabilities & Threats
Max-Critical Cisco Bug Enables Command-Injection Attacks
Max-Critical Cisco Bug Enables Command-Injection Attacks
Nov 7, 2024
|
1 Min Read
byDark Reading Staff, Dark Reading
A screen full of code that has already been written
Application Security
Symbiotic Security Launches Scanning Tool to Help Fix Flaws in Code
Symbiotic Security Launches Scanning Tool to Fix Flaws in Code
Nov 7, 2024
|
1 Min Read
byFahmida Y. Rashid, Managing Editor, Features
Snowflake company logo displayed on smartphone that a person's hand is holding
Cyberattacks & Data Breaches
Canadian Authorities Arrest Attacker Who Stole Snowflake Data
Canadian Authorities Arrest Attacker Who Stole Snowflake Data
Nov 5, 2024
|
1 Min Read
byDark Reading Staff, Dark Reading
Person in panda mask and colorful suit adjusting their tie
Application Security
Android Botnet 'ToxicPanda' Bashes Banks Across Europe, Latin America
Android Botnet 'ToxicPanda' Bashes Banks Across Europe, LatAm
Nov 5, 2024
|
1 Min Read
byBecky Bracken, Senior Editor, Dark Reading
Black background and white text saying Dark Reading Confidential
Cyber Risk
Dark Reading Confidential: Quantum Has Landed, So Now What?
Dark Reading Confidential: Quantum Has Landed, So Now What?
Nov 5, 2024
|
31 Min Listen
byDark Reading Staff, Dark Reading
The letters LLM in 3D on top of the words Large Language Model against black backdrop
Application Security
Google: Big Sleep AI Agent Puts SQLite Software Bug to Bed
Google: Big Sleep AI Agent Puts SQLite Software Bug to Bed
Nov 4, 2024
|
1 Min Read
byElizabeth Montalbano, Contributing Writer
Microsoft Copilot logo displayed on smartphone screen
Application Security
Privacy Anxiety Pushes Microsoft Recall AI Release Again
Privacy Anxiety Pushes Microsoft Recall AI Release Again
Nov 1, 2024
|
1 Min Read
byBecky Bracken, Senior Editor, Dark Reading

Editor's Choice

Starbucks logo on a storefront
Cyberattacks & Data Breaches
Ransomware Attack on Blue Yonder Hits Starbucks, SupermarketsRansomware Attack on Blue Yonder Hits Starbucks, Supermarkets
byJai Vijayan, Contributing Writer
Nov 25, 2024
4 Min Read
thumbnail
Сloud Security
Nearly Two Dozen AWS APIs Are Vulnerable to AbuseNearly Two Dozen AWS APIs Are Vulnerable to Abuse
byJai Vijayan, Contributing Writer
Nov 17, 2020
4 Min Read
Male hand holding a tablet, with a car floating above it; black background
Vulnerabilities & Threats
My Car Knows My Secrets, and I'm (Mostly) OK With ThatMy Car Knows My Secrets, and I'm (Mostly) OK With That
byKyle Hanslovan
Nov 26, 2024
5 Min Read
Reports
More Reports
Webinars
More Webinars
White Papers
More Whitepapers
Events
More Events
Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.
Subscribe