%term

The latest News and Information on Application Security including monitoring, testing, and open source.

Mobile App Security Audit Checklist

Apr 10, 2025 By Abhinav Vasisth In Appknox

New cyber threats emerge daily, demanding constant attention. Security isn't something you do once and forget about! According to IBM, the average cost of a data breach in 2024 was $4.88 million, a 10% increase from the previous year. That’s why it's crucial to integrate regular mobile app security audits into your strategy. Think of it as a health check-up for your app – catching problems before they become nightmares.

Read Post

Appknox

Read more about Mobile App Security Audit Checklist

The malware dating guide: Understanding the types of malware on NPM

Apr 10, 2025 By Madeline Lawrence In Aikido

The Node ecosystem is built on a foundation of trust — trust that the packages you npm install are doing what they say they do. But that trust is often misplaced. Over the past year, we’ve seen a disturbing trend: a rising number of malicious packages published to npm, often hiding in plain sight. Some are crude proof-of-concepts (PoCs) by researchers, others are carefully crafted backdoors.

Read Post

Aikido

Read more about The malware dating guide: Understanding the types of malware on NPM

Cybersecurity Modernization Summit: Moving From Reactive Threat Detection and Response to Proactive

Apr 10, 2025 By Datadog In Datadog

Jake Williams, SVP of Modernization at Scoop News Group and Datadog VP Bianca Lankford for a conversation to learn more about how real-time threat detection paired with rich observability insights is helping organizations to achieve faster security outcomes. This conversation will also address the role auto-remediation plays in the future of government cybersecurity.

View Video

Datadog

Read more about Cybersecurity Modernization Summit: Moving From Reactive Threat Detection and Response to Proactive

Secure Cloud Computing in Government

Apr 10, 2025 By Datadog In Datadog

Cloud technology continues to play an integral role in driving innovation at federal agencies. As use cases become increasingly complex, how can agencies ensure data is secured? During this webinar, you will gain the unique perspective of top federal IT experts.

View Video

Datadog

Read more about Secure Cloud Computing in Government

MeriTalk State Tech Vision Panel: Workforce, Cybersecurity, and Digital Transformation

Apr 10, 2025 By Datadog In Datadog

View Video

Datadog

Read more about MeriTalk State Tech Vision Panel: Workforce, Cybersecurity, and Digital Transformation

AI and AppSec: A Partnership to Prevent Breaches

Apr 10, 2025 By Natalie Tischler In Veracode

As software development accelerates, cyberattacks are also growing more sophisticated. The result? Traditional security methods are often rendered ineffective. With reactive strategies and stretched resources, application security (AppSec) teams are under increasing pressure to secure apps without sacrificing speed and innovation. Artificial intelligence (AI) has quickly become the frontrunner solution, automating labor-intensive tasks, improving accuracy, and enabling proactive security measures.

Read Post

Veracode

Read more about AI and AppSec: A Partnership to Prevent Breaches

Hide and Fail: Obfuscated Malware, Empty Payloads, and npm Shenanigans

Apr 3, 2025 By Willem Delbare In Aikido

‍ On March 14th 2025, we detected a malicious package on npm called node-facebook-messenger-api. At first, it seemed to be pretty run-of-the-mill malware, though we couldn’t tell what the end-goal was. We didn’t think much more of it until April 3rd 2025, when we see the same threat actor expand their attack.

Read Post

Aikido

Read more about Hide and Fail: Obfuscated Malware, Empty Payloads, and npm Shenanigans

Reference Tables is GA + Attacker Clustering & More | TMiDD March #Datadog #technews

Apr 2, 2025 By Datadog In Datadog

What’s new at Datadog? Get up to speed on new features, including Attacker Clustering, Auto Test Retries, and Observability Pipelines integrations with SentinelOne, Amazon S3, Amazon Data Firehose, and AWS Lambda. That’s on This Month in Datadog. Check out the link in our bio to watch the new episode.

View Video

Datadog

Read more about Reference Tables is GA + Attacker Clustering & More | TMiDD March #Datadog #technews

This Month in Datadog: Reference Tables is generally available, Attacker Clustering, and more

Apr 1, 2025 By Datadog In Datadog

Datadog is constantly elevating the approach to cloud monitoring and security. This Month in Datadog updates you on our newest product features, announcements, resources, and events. To learn more about Datadog and start a free 14-day trial, visit Cloud Monitoring as a Service | Datadog.

View Video

Datadog

Read more about This Month in Datadog: Reference Tables is generally available, Attacker Clustering, and more

Malware hiding in plain sight: Spying on North Korean Hackers

Mar 31, 2025 By Madeline Lawrence In Aikido

On March 13th 2025, our malware analysis engine alerted us to a potential malicious package that was added to NPM. First indications suggested this would be a clear-cut case, however, when we started peeling back the layers things weren’t quite as they seemed. Here is a story about how sophisticated nation state actors can hide malware within packages.

Read Post