%term

Rebuilding the Past: How Seal Security Uses an NPM Time Machine to Patch Node.js Libraries

Dec 10, 2024 By Lev Pachmanov In Seal Security

At Seal Security, our mission goes beyond simply fixing vulnerabilities in open source libraries—we aim to ensure that every patch we implement keeps your applications running smoothly. Patching an old library isn’t just about addressing the vulnerability; it's also about ensuring the fixed version works exactly as it did when it was first built.

Read Post

Seal Security

Read more about Rebuilding the Past: How Seal Security Uses an NPM Time Machine to Patch Node.js Libraries

New RBAC feature offers granularity and flexibility for Outpost24's EASM customers

Dec 10, 2024 By Outpost 24 In Outpost 24

A new role-based access control (RBAC) feature has been added to Outpost24’s external attack surface management (EASM) solution. This opens up new possibilities for Outpost24 customers, allowing them to be more granular when it comes to configuring permissions for different roles.

Read Post

Outpost 24

Read more about New RBAC feature offers granularity and flexibility for Outpost24's EASM customers

Application Security 101: A Guide for Developers

Dec 9, 2024 By Snyk In Snyk

Most developers and companies believe their applications to be secure and understand the importance of security. However, year after year, they continue to push vulnerable code into production... In order to avoid these pitfalls and improve the overall security of our applications, we need to understand what application security (or AppSec) is all about. In this video, you will learn what application security is, why it's important and what you can do to keep your applications secure.

View Video

Snyk

Read more about Application Security 101: A Guide for Developers

Steps for Successful Vulnerability Management: Lessons from the Pitch

Dec 9, 2024 By Anthony Israel-Davis In Tripwire

When I was younger, I played a variety of team sports and enjoyed competing against opponents with my teammates. Winning was always a matter of applying sound tactics and strategy, attacking and defending well and using a blend of skill, talent and luck.

Read Post

Tripwire

Read more about Steps for Successful Vulnerability Management: Lessons from the Pitch

API Vulnerabilities in Q3: Key Product Categories at Risk #APISecurity #AIAPIs #CyberSecurity

Dec 9, 2024 By Wallarm In Wallarm

Discover the most vulnerable product categories from Q3 and what they mean for API security: A rise in AI and machine learning API exploits, creating new challenges. Why enterprise hardware, DevOps tools, and legacy APIs like XML RPC remain primary targets. How categorizing vulnerabilities provides industry-specific guidance for better protection.

View Video

Wallarm

Read more about API Vulnerabilities in Q3: Key Product Categories at Risk #APISecurity #AIAPIs #CyberSecurity

Snyk-generated SBOMs now include license details for the open source libraries in your projects

Dec 9, 2024 By Jamie Smith In Snyk

We’re excited to announce that SBOMs (software bill of materials) generated by Snyk's tools will include license information! This new capability is part of our ongoing efforts in our Software Supply Chain Security solution. The developer-first tools in the solution help you gain a better understanding of your app’s supply chain, identify potential risks, and take the necessary steps to get ahead of them.

Read Post

Snyk

Read more about Snyk-generated SBOMs now include license details for the open source libraries in your projects

Celebrating Our Evolution: A Fresh Look, the Same Mission

Dec 9, 2024 By Tamir Hardof In Nucleus

Today marks an exciting milestone for Nucleus as we unveil our refreshed brand and new website. This update isn’t just about a new look; it’s a reflection of our journey, growth, and unwavering commitment to you—our customers and partners.

Read Post

Nucleus

Read more about Celebrating Our Evolution: A Fresh Look, the Same Mission

Analyzing Malware Browser Extension

Dec 8, 2024 By Snyk In Snyk

Watch the full video for more...

View Video

Snyk

Read more about Analyzing Malware Browser Extension

Windows Zero-Day Threat: Protect Your NTLM Credentials

Dec 8, 2024 By John Gates In CalCom

A newly discovered zero-day vulnerability in Windows potentially exposes users across multiple Windows versions to credential theft. Discovered by 0patch researchers, this critical security flaw allows attackers to steal NTLM credentials through a deceptively simple method. The vulnerability affects a wide range of Windows systems, including: Technical details of the vulnerability are withheld to minimize exploitation risk until Microsoft issues a fix to minimize any further risk of exploitation.

Read Post