As part of our strategy to enhance application awareness for SecOps practitioners, our new Secure Firewall Application Detectors portal, https://appid.cisco.com, provides the latest and most comprehensive application risk information available in the cybersecurity space. This advance is important because today’s applications are not static. In fact, applications are … [Read more...] about Mitigating Dynamic Application Risks with Secure Firewall Application Detectors
Application
Unifying the Power of EDR with SaaS and Application Security
There’s no stopping when it comes to scaling your business, so why should your security remain stagnant? With your organization constantly expanding and your IT and security stack increasing in tools, your threat landscape is bound to grow with it. And by leveraging an increasing number of external applications and software-as-a-service (SaaS)-delivered solutions, you’re … [Read more...] about Unifying the Power of EDR with SaaS and Application Security
Test Automation for Application Security
This blog is co-authored by Matthew McCullough and is part three of a four-part series about DevSecOps. Previously, the series explored a framework for continuous security and looked at one aspect of maintaining application security, a software Bill of Materials (BOM,) and associated vulnerabilities. This blog focuses on application security and how Cisco validates its software … [Read more...] about Test Automation for Application Security
MITRE ATT&CK: The Magic of Application Mitigations
“The eyes are the window to your soul.” Hmmm. How about a new twist? Applications are the window to your business. Like windows, applications tempt thieves and prying eyes. Securing them can be paneful (ugh, sorry). But we’ve got some great advice on protecting applications in the modern era. The evolution of today’s applications Let’s get this out of the way right now: Modern … [Read more...] about MITRE ATT&CK: The Magic of Application Mitigations
Cisco Secure Application: A New Approach to Application Security
It’s no surprise that the events of 2020 drastically changed the IT landscape, as millions of people began working from home, accessing apps from a multitude of devices on public internet and service providers. As organizations embraced hybrid/multi-cloud technologies, vastly expanding the perimeter of IT, they also faced an unprecedented rise in malicious security threats and … [Read more...] about Cisco Secure Application: A New Approach to Application Security
Why Replace Traditional Web Application Firewall (WAF) With New Age WAF?
At present, web applications have become the top targets for attackers because of potential monetization opportunities. Security breaches on the web application can cost millions. Strikingly, DNS (Domain Name System) related outage and Distributed denial of service (DDoS) lead a negative impact on businesses. Among the wide range of countermeasures, a web application firewall … [Read more...] about Why Replace Traditional Web Application Firewall (WAF) With New Age WAF?
Why Application Security Should Be Considered An Enabler For Business
If you ask Alex, he won't admit being old-fashioned. He has been working in the IT industry for a while now and accepts that security is important for the business's health. But reluctant to take security as the business enabler.In today's environment, moving to digitization is a critical step required to drive innovation and business growth. When the application development … [Read more...] about Why Application Security Should Be Considered An Enabler For Business
Critical RCE Flaw (CVSS 10) Affects F5 BIG-IP Application Security Servers
Cybersecurity researchers today issued a security advisory warning enterprises and governments across the globe to immediately patch a highly-critical remote code execution vulnerability affecting F5's BIG-IP networking devices running application security servers.The vulnerability, assigned CVE-2020-5902 and rated as critical with a CVSS score of 10 out of 10, could let remote … [Read more...] about Critical RCE Flaw (CVSS 10) Affects F5 BIG-IP Application Security Servers