Latest posts tagged with #appsec on Bluesky
Scalable AI governance starts with a clear security roadmap.
Join us, sponsor Snyk, and expert Brendan Hann tomorrow for this FREE webcast on building a practical path to scalable AI security.
Register now: https://ow.ly/5W4950YFxov
#AISecurity #DevSecOps #AppSec
Hello AppSec community!
Our preparations for German #OWASP Day 2026 (GOD) are in full swing. As some of you may have noticed, the website is already live (and kicking): https://god.owasp.de/
This year’s GOD will take place on September 24, 2026, in Karlsruhe. It's a one-day conference with two […]
We’ve been working on something special…
🌟 Our first Impact Report is here!
Real stories, real voices, real impact, all made possible by you.
📄 owasp.org/assets/fil...
We are very proud of this one. Excited for what’s next 💪❤️
#OWASP #Impactreport #community #opensource #infosec #appsec
🧠Hackers don’t care if you’re early-stage
They scan
They find
They exploit
Startups with weak basics are the easiest targets.
👉Fix it early, not after a breach: 7asecurity.com/blog/2026/04...
#CyberSecurity #Startups #AppSec #InfoSec
What’s trending in cybersecurity today? Find out with the latest YouTube playlist we’ve curated. 👀 www.youtube.com/playlist
#Malware #Phishing #IncidentResponse #CyberAwareness #AppSec
Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed (CVE-2025-59528) #appsec
The latest update for #Veracode includes "What #RSAC2026 Actually Told Us About Your Security Debt" and "Mastering Software #SupplyChain Management in 2026".
#cybersecurity #softwaresecurity #AppSec #DevSecOps https://opsmtrs.com/3eO6tf7
~Socket~
Microsoft released an open-source toolkit to enforce runtime security policies for autonomous AI agents.
-
IOCs: (None identified)
-
#AI #AppSec #ThreatIntel
#OWASP Global #AppSec EU call for volunteers is now open! If you are interested in helping the foundation host this event, sign up today: owasp.wufoo.com/form...
#cybersecurity #devsecops
Automated AI code scanners are identifying flaws at an industrial scale, completely outstripping the funding budgets designed for human researchers. #ai #infosec #bugbounty #appsec #devsecops #cybersecurity #opensource #technology
The shift from prompts to autonomous agents is creating a new security reality.
Join us, sponsor Snyk, and a panel of experts on April 15th for this FREE webcast on agentic AI security, discovery and benchmarking risk.
Register now: https://ow.ly/2bCU50YEV6L
#AISecurity #AgenticAI #AppSec
~Trailofbits~
Trail of Bits audited WhatsApp's Private Inference TEEs, finding and helping patch 28 vulnerabilities, including 8 high-severity flaws, before launch.
-
IOCs: (None identified)
-
#AppSec #TEE #ThreatIntel #WhatsApp
🧠Cheap pentests don’t save money
They create blind spots
Automated scans = fast
Real attacks = manual
If your app handles real data, you need testing that actually breaks things
See how pricing really works: 7asecurity.com/blog/2026/04...
#CyberSecurity #PenTesting #AppSec #InfoSec
Part 2 of the CRS 3→4 migration series: configuration. Don't reuse your old crs-setup.conf — variables were renamed, split, and added. Post includes a full checklist and an interactive migration tool.
coreruleset.org/2026...
#OWASP #CRS #WAF #AppSec
CRITICAL vuln in parisneo/lollms v2.1.0: Weak JWT secret lets attackers forge admin tokens & escalate privileges. Patch to v2.2.0 now! 🔒 radar.offseq.com/threat/cve-2026-1114-cwe... #OffSeq #CVE20261114 #AppSec
The latest update for #Zenity includes "After RSA, Here Is What Comprehensive Agentic AI Security Actually Looks Like" and "Identity Isn't Enough: Why #AI Agent Security Requires Runtime Context".
#cybersecurity #lowcodesecurity #appsec https://opsmtrs.com/3GN6TxH
The latest update for #GitGuardian includes "#Gartner IAM Summit 2026: Identity Expanded Faster Than Most Programs Did" and "NHI Governance Is the Outcome. GitGuardian Is How You Get There".
#cybersecurity #DevOps #infosec #appsec https://opsmtrs.com/3XY1xZb
Learn again more on AI Security at OWASP BASC
Dan D'Avella will talk about Autonomous Remediation using AI Security Agents.
Check out more at www.basconf.org
#owasp #basc2026 #basconf #appsec
Our #OWASP February Virtual 25th Anniversary videos are now live! www.youtube.com/play...
#cybersecurity #appsec #devsecops
React2Shell under active exploitation.
766+ hosts compromised.
Automated secret harvesting at scale.
Cloud creds, API keys, SSH keys exposed.
Are you rotating secrets fast enough?
Follow TechNadu.
#CyberSecurity #AppSec #InfoSec
OWASP GenAI Security Project Gets New Update, Tools Matrix
www.darkreading.com/application-...
#InfoSec #TechSky #AppSec #AgenticAI #GenAI
Fresh cyber content every day. Watch the newest playlist and learn how hackers think—and how to defend. 🚀 www.youtube.com/playlist
#Hacking #CyberDefense #AppSec #Ransomware #DarkWeb
Learn all about AI Security at OWASP BASC
Jonathan Dutson will talk about how Agentic Workflows can be compromised
Check out more at www.basconf.org
#owasp #appsec #basconf #basc2026
Thirty-Six Malicious npm Strapi Packages Deploy Redis RCE, Database Theft, and Persistent C2 #appsec
[un]prompted 2026 – Guardrails Beyond Vibes Author, Creator & Presenter: Jeffrey Zhang, Security Engineer, Stripe & Siddh Shah, Software Engineer, Stripe Our thanks to [un]prompted for pu...
#Network #Security #Security #Bloggers #Network #[un]prompted […]
[Original post on securityboulevard.com]
Last Day to buy tickets! Last few tickets left!
Grab your chance to listen and meet experts in application security and get some new skills. Buy your ticket at www.basconf.org — ticket refunded at check-in!
#appsec #basconf #owasp #basc2026
Another talk announcement for BSides Luxembourg!
🧠💻 𝗧𝗔𝗟𝗞 𝗧𝗢 𝗔 𝗦𝗛𝗘𝗟𝗟: 𝗘𝗫𝗣𝗟𝗢𝗜𝗧𝗜𝗡𝗚 𝗔𝗜 𝗔𝗚𝗘𝗡𝗧𝗦 𝗜𝗡 𝗥𝗘𝗔𝗟 𝗧𝗜𝗠𝗘 – Parth Shukla ⚡
AI agents are no longer just chatbots—they can execute commands, access files, and interact with real systems. But what if an attacker […]
[Original post on infosec.exchange]
