Tag

Technology

Browsing

Modern-day cyberattacks keep growing in sophistication and sheer volume. This dynamic makes it virtually impossible to detect and block all attacks using the traditional methods of comparing incoming requests to known attack signatures. To effectively operate in this new aggressive cyberthreat environment, it is paramount that IT operations, developers, and DevSecOps adopt a proactive defense mindset. Threat hunting is all about having that powerfully proactive mindset. The underlying goal of threat hunting is to detect,…

It is impossible to protect APIs unless you take a deep dive into the protocols implemented over the standard HTTP. Most security tools are not protecting data where it’s most vulnerable, inside the XML schema itself. These encoding attacks are going unflagged by many application platforms, despite topline security tools and techniques they believe protect APIs. The problem is in the code and the relative inability to notice what malicious attack may be hiding inside…

Start listening. Integrating isn’t enough if your teams aren’t talking. In a hyper-competitive environment, keeping up with customer usability demands often means adopting a hyper-agile development process. It’s a dangerous devil’s bargain. Security gets left on the cutting room floor in pursuit of highly responsive, first-to-market, code-to-customer feature flow. Mobile and cloud applications increasingly rely on SaaS and APIs to quickly meet customer needs. It allows for more complex rich application logic without having to reimplement…

Understanding how cryptocurrency exchanges evolved into hacker fantasy islands is all in the name. MTGOX, a company remembered for the largest crypto breach in history, is an acronym for Magic The Gathering Online Exchange (MTGOX). The absurd rise and fall of MTGOX is critical to understanding the fraught state of cryptocurrency exchanges — and the high risks of investing in cryptocurrency. From cryptocurrency security systems architecture to the major players in the game, the crypto world is…

White hat security professional and entrepreneur Ivan Novikov has joined the Forbes Technology Council, an invitation-only community that serves as a platform for technology leaders to discuss and solve pressing business challenges with their peers and share their insights with readers on Forbes.com. The Forbes Technology Council includes senior executives from such companies as Salesforce, Oracle, SAP, Cisco, and many others. Ivan is the founder of Wallarm, an AI-based security company based in Silicon Valley.…