GDPR is altering software development practices by forcing software development companies to take steps towards better application design and greater security.
API that provides list of Android apps installed on a device may allow advertisers to fingerprint users' demographic information and track what they access on the internet.
Another Facebook privacy breach was found through the clean-up of its data privacy practices which involves 100 developers with improper access to Facebook Groups data.
Ponemon and WhiteSource report on application security indicates that most large enterprise-scale organizations feel that their portfolio of applications has become more vulnerable recently.
Codecov supply chain attack remained undetected for months and likely affected Google, IBM, HP, and others. Hackers stole user data from the company’s continuous integration environment.
U.S. Department of Homeland Security aims to help software developers and security researchers eliminate common software vulnerabilities by releasing a list of top 25 most dangerous software errors.
Source code leak of software belonging to over 50 high profile companies was made available online due to misconfiguration of their software development platforms.
Facebook announced an app suspension of “ten of thousands” of apps as part of its privacy investigation. The initiative extends to any app that refuses to answer Facebook how user data is utilized, shared and monetized.
Open source software components are useful for software development yet vulnerable to attacks due to its openness. What are some of the best security practices in managing them?