application security Archives

Abstract application data matrix. (Getty Images)

Oligo Security strives to fill application-layer gaps in MITRE ATT&CK framework

Application Attack Matrix is a community effort designed to help defenders and organizations better understand and define how attackers use and exploit weaknesses in applications.

3 days ago By Matt Kapko

Amazon’s Chief Security Officer Stephen Schmidt, center, talks with Danielle Ruderman, Senior Manager, Worldwide Security Specialists, AWS, and Lakshmi Raman, Chief Artificial Intelligence Officer for the Central Intelligence Agency, at the AWS Summit in Washington, D.C. on June 10, 2025. (Photo Courtesy of AWS)

How Amazon Web Services uses AI to be a security ‘force multiplier’

Amazon CSO Stephen Schmidt says AI is transforming the way the company does security reviews and incident response.

Jun 11, 2025 By Greg Otto

Managing application permissions to minimize potential attack surfaces

It’s crucial to review and restrict application access to sensitive data. ThreatLocker CEO Danny Jenkins outlines a three-step process for handling these permissions to better secure systems.

Dec 3, 2024 By Scoop News Group

Achieving web application security

By adopting modern application security tools, organizations can reevaluate teams, structures and processes to address current development needs better — and evolving missions.

Apr 21, 2022 By CyberScoop Staff

contact tracing, coronavirus — (Getty Images)

Flaw in Philippines’ contact-tracing app served up data on 30K health care providers, research finds

The flaw has been fixed, but it’s a reminder of how software tools used to combat the pandemic can open up new fronts in data insecurity

Nov 11, 2020 By Sean Lyngaas

The United State Postal Service headquarters in Washington, D.C.

Postal Service left vulnerable IT applications unaddressed for years, inspector general finds

The "common, well-known vulnerabilities" could have been exploited by hackers using "publicly available methods,” the report found.

Sep 11, 2020 By Sean Lyngaas

Money, Cash, Payment, Ransomware, Finance, Banking — (Getty Images)

Cloud company Fastly to purchase app security provider Signal Sciences for $775 million

Fastly says it plans to fold Signal Sciences' technology into a new security product.

Aug 27, 2020 By Jeff Stone

apple sign in — The research comes a year after Apple unveiled the “Sign in with Apple” feature, which authenticates users on apps without disclosing their Apple IDs. (Pexels)

Researcher claims $100,000 for ‘Sign in with Apple’ hack

It highlights the big payouts Apple has been offering through a bug bounty program it expanded last year.

Jun 1, 2020 By Sean Lyngaas

Fingerprint recognition technology for user id security. Finger touch scanner app to secure personal information data. Cyber security protection identification for protect payment. Fingerprint login

Securiosity: Where is the weak link in your application security?

It's not the 0day that will take you down, it's the missed permission.

May 5, 2020 By cyberscoop_staff Jeff Stone