Posts by Taylor Armerding:
Taylor Armerding, Synopsys Software Integrity Group senior strategist, gives you the scoop on application security and insecurity in this week’s Security Mashup.
What’s in this week’s Security Mashup, you ask?
CamuBot malware is the new kid on the block, the sounds of hacking (SonarSnoop), and back to the government’s wish for chat backdoors. Watch this week’s episode below.
Continue Reading...
Posted in General | Comments Off on CamuBot malware, SonarSnoop hacking, and government backdoors
According to privacy advocates, Google has a problem with truth in labeling.
Continue Reading...
Posted in General | Comments Off on Gmail Confidential? Not so much
Taylor Armerding, Synopsys Software Integrity Group senior strategist, gives you the scoop on application security and insecurity in this week’s Security Mashup.
What’s in this week’s Security Mashup, you ask?
Fixing the CVE program, your personal data has already “checked out,” and it even “may potentially” have taken flight. Watch this week’s episode below to see why these stories are trending or read the transcript below.
Continue Reading...
Posted in General, Mobile Application Security | Comments Off on Fixing the CVE program, your personal data checking out and taking flight
“Leaky” is almost never a good thing. The whole idea, in just about any case, is to make things that don’t leak and to plug things that do.
Continue Reading...
Posted in Data Breach, Web Application Security | Comments Off on These hacks brought to you by ‘leaky’ APIs
“You can pay (a little) now or you can pay (a lot) later” is a very old line—a pitch for oil filters almost 40 years ago. Unfortunately, it remains relevant in cyber security, especially when it comes to ransomware. And especially when that ransomware is the potent, pernicious SamSam.
Continue Reading...
Posted in General | Comments Off on SamSam ransomware keeps striking—victims still unprepared
Taylor Armerding, Synopsys Software Integrity Group senior strategist, gives you the scoop on application security and insecurity in this week’s Security Mashup.
What’s in this week’s Security Mashup, you ask?
Not a real hack, but maybe a test hack, don’t let Ghostscript haunt you, and a helpful hacker. Watch this week’s episode below:
Continue Reading...
Posted in Data Breach, General, Open Source Security | Comments Off on A test hack, don’t let Ghostscript haunt you, and a helpful hacker
Moving virtualized workloads to the cloud is either a reality or a near-term goal for an overwhelming majority—90%—of 170 organizations surveyed during July and August by Druva, a cloud data management and security company.
Continue Reading...
Posted in Cloud Security, General | Comments Off on Survey: Data management is an afterthought in cloud migration
Taylor Armerding, Synopsys Software Integrity Group senior strategist, gives you the scoop on application security and insecurity in this week’s Security Mashup.
What’s in this week’s Security Mashup, you ask?
Facing off with Google, Snap out of it, and Password protection. Watch this week’s episode taped live at Black Hat USA 2018.
Continue Reading...
Posted in Data Breach, General, Open Source Security | Comments Off on Facing off with Google, Snap out of it, and Password protection
What makes medical devices hackable? The same thing that makes websites hackable: software vulnerabilities. But the consequences are far worse than stolen data.
Continue Reading...
Posted in Healthcare Security, Medical Device Security | Comments Off on Medical devices still hackable, researchers say
The FDA’s adoption of UL 2900-2-1 as a consensus standard for premarket certification of medical devices means the world is about to change—for the better.
Continue Reading...
Posted in Healthcare Security, Medical Device Security | Comments Off on How to help your medical devices meet the UL (and FDA) standard
