Application Security / #AppSec / #appsecurity is a key area in modern #CyberSecurity.
Particularly with so many non-tech folk now building Web apps using #AI.
If you're building apps I highly recommend reading the books by Tanya Janca @shehackspurple.bsky.social
They have helped me a lot!
Particularly with so many non-tech folk now building Web apps using #AI.
If you're building apps I highly recommend reading the books by Tanya Janca @shehackspurple.bsky.social
They have helped me a lot!
November 8, 2025 at 4:51 PM
Application Security / #AppSec / #appsecurity is a key area in modern #CyberSecurity.
Particularly with so many non-tech folk now building Web apps using #AI.
If you're building apps I highly recommend reading the books by Tanya Janca @shehackspurple.bsky.social
They have helped me a lot!
Particularly with so many non-tech folk now building Web apps using #AI.
If you're building apps I highly recommend reading the books by Tanya Janca @shehackspurple.bsky.social
They have helped me a lot!
Understanding Application Security is key to a robust digital infrastructure. How do you secure your apps? Share your strategies with #AppSecurity #CyberSecurity #DevSecOps. Let's learn & grow! #CyberSecurity #InfoSec #DevSecOps #DataProtection
December 28, 2024 at 2:54 PM
Understanding Application Security is key to a robust digital infrastructure. How do you secure your apps? Share your strategies with #AppSecurity #CyberSecurity #DevSecOps. Let's learn & grow! #CyberSecurity #InfoSec #DevSecOps #DataProtection
📌 New approach to app security: Application Security Posture Management (ASPM) introduced. Unifies and modernizes app protection. #CyberSecurity #AppSecurity https://tinyurl.com/224jof9j
Webinar Introduces Application Security Posture Management (ASPM)
A webinar introduces Application Security Posture Management (ASPM), a unified and intelligent approach to application security. This method aims to address the issues faced by many organizations that use outdated and fragmented security tools, leaving their applications vulnerable to modern threats. ASPM offers an integrated solution for proactive management of application security.
tinyurl.com
March 9, 2025 at 9:20 PM
📌 New approach to app security: Application Security Posture Management (ASPM) introduced. Unifies and modernizes app protection. #CyberSecurity #AppSecurity https://tinyurl.com/224jof9j
Telegram asserts its source code remains unchanged, but the FAQ has been updated for clearer instructions on reporting content, including through the Digital Services Act (DSA). #Telegram #TechUpdate #DSA #ContentModeration #Privacy #AppSecurity
September 7, 2024 at 9:25 AM
Telegram asserts its source code remains unchanged, but the FAQ has been updated for clearer instructions on reporting content, including through the Digital Services Act (DSA). #Telegram #TechUpdate #DSA #ContentModeration #Privacy #AppSecurity
Unlocking the power of secure coding! DevSecOps integration is key for robust application security. How are you addressing app vulnerabilities? #AppSecurity #DevSecOps #CyberSecurity #CyberSecurity #InfoSec #DevSecOps #DataProtection
December 25, 2024 at 12:40 PM
Unlocking the power of secure coding! DevSecOps integration is key for robust application security. How are you addressing app vulnerabilities? #AppSecurity #DevSecOps #CyberSecurity #CyberSecurity #InfoSec #DevSecOps #DataProtection
5/ This traceability makes audit prep far easier—and faster.
How does your team manage compliance testing across mobile OS versions?
#MobileCompliance #GDPR #AppSecurity #MobileTesting #Corellium
How does your team manage compliance testing across mobile OS versions?
#MobileCompliance #GDPR #AppSecurity #MobileTesting #Corellium
April 25, 2025 at 5:39 AM
5/ This traceability makes audit prep far easier—and faster.
How does your team manage compliance testing across mobile OS versions?
#MobileCompliance #GDPR #AppSecurity #MobileTesting #Corellium
How does your team manage compliance testing across mobile OS versions?
#MobileCompliance #GDPR #AppSecurity #MobileTesting #Corellium
Very interesting blog post from a secure code review perspective. I discovered it thanks to @pentesterlab.com
"Unexpected security footguns in Go's parsers"
#go #appsec #appsecurity
blog.trailofbits.com/2025/06/17/u...
"Unexpected security footguns in Go's parsers"
#go #appsec #appsecurity
blog.trailofbits.com/2025/06/17/u...
Unexpected security footguns in Go's parsers
File parsers in Go contain unexpected behaviors that can lead to serious security vulnerabilities. This post examines how JSON, XML, and YAML parsers in Go handle edge cases in ways that have repeated...
blog.trailofbits.com
June 23, 2025 at 6:37 AM
Very interesting blog post from a secure code review perspective. I discovered it thanks to @pentesterlab.com
"Unexpected security footguns in Go's parsers"
#go #appsec #appsecurity
blog.trailofbits.com/2025/06/17/u...
"Unexpected security footguns in Go's parsers"
#go #appsec #appsecurity
blog.trailofbits.com/2025/06/17/u...
When an App Asks for Permissions It Doesn’t Need: Is It Ambitious or Malicious? open.substack.com/pub/bradleys...
#Cybersecurity #AppDesign #DigitalPrivacy #UXMatters #DataEthics #TechTrust #InfoSec #AppSecurity #PermissionsAbuse #DarkPatterns #HumanCenteredTech
#Cybersecurity #AppDesign #DigitalPrivacy #UXMatters #DataEthics #TechTrust #InfoSec #AppSecurity #PermissionsAbuse #DarkPatterns #HumanCenteredTech
When an App Asks for Permissions It Doesn’t Need: Is It Ambitious or Malicious?
Just Say No: The Digital Consent Crisis
open.substack.com
July 23, 2025 at 7:30 PM
When an App Asks for Permissions It Doesn’t Need: Is It Ambitious or Malicious? open.substack.com/pub/bradleys...
#Cybersecurity #AppDesign #DigitalPrivacy #UXMatters #DataEthics #TechTrust #InfoSec #AppSecurity #PermissionsAbuse #DarkPatterns #HumanCenteredTech
#Cybersecurity #AppDesign #DigitalPrivacy #UXMatters #DataEthics #TechTrust #InfoSec #AppSecurity #PermissionsAbuse #DarkPatterns #HumanCenteredTech
Unseen obstacle in app creation: Firebase Security Rules! Discover strategies to overcome this challenge and secure your application effectively. #AppSecurity #Firebase
Read more:
Read more:
Firebase Security Rules: The Hidden Hurdle in App Development (And How to Clear It) | Flame Shield | Firebase & Gemini Billing protection
Firebase Security Rules are crucial for app safety but often misconfigured. Dive into common pitfalls and learn best practices—from emulator testing to unit tests—to write robust rules and clear this…
flamesshield.com
May 27, 2025 at 8:11 AM
Unseen obstacle in app creation: Firebase Security Rules! Discover strategies to overcome this challenge and secure your application effectively. #AppSecurity #Firebase
Read more:
Read more:
📡 OWASP Secure Headers Project:
- We added information about the HTTP response header "X-DNS-Prefetch-Control".
- We added the tool "shcheck" to the list of analysis tools.
#appsec #appsecurity #owasp_shp
- We added information about the HTTP response header "X-DNS-Prefetch-Control".
- We added the tool "shcheck" to the list of analysis tools.
#appsec #appsecurity #owasp_shp
November 5, 2025 at 5:28 AM
📡 OWASP Secure Headers Project:
- We added information about the HTTP response header "X-DNS-Prefetch-Control".
- We added the tool "shcheck" to the list of analysis tools.
#appsec #appsecurity #owasp_shp
- We added information about the HTTP response header "X-DNS-Prefetch-Control".
- We added the tool "shcheck" to the list of analysis tools.
#appsec #appsecurity #owasp_shp
📡 OWASP Secure Headers Project: Section about Content-Security-Policy bypasses prevention updated with information related to the "base-uri" directive.
#appsec #appsecurity #owasp_shp #csp
📖 owasp.org/www-project-...
#appsec #appsecurity #owasp_shp #csp
📖 owasp.org/www-project-...
January 14, 2025 at 3:09 PM
📡 OWASP Secure Headers Project: Section about Content-Security-Policy bypasses prevention updated with information related to the "base-uri" directive.
#appsec #appsecurity #owasp_shp #csp
📖 owasp.org/www-project-...
#appsec #appsecurity #owasp_shp #csp
📖 owasp.org/www-project-...
The answer to that question is YES✅
pub.dev/packages/fre...
#talsec #AppSecurity #Flutter #CyberSecurity #FreeRASP
pub.dev/packages/fre...
#talsec #AppSecurity #Flutter #CyberSecurity #FreeRASP
February 12, 2025 at 9:20 AM
The answer to that question is YES✅
pub.dev/packages/fre...
#talsec #AppSecurity #Flutter #CyberSecurity #FreeRASP
pub.dev/packages/fre...
#talsec #AppSecurity #Flutter #CyberSecurity #FreeRASP
"Is Your Favorite App Secretly Stealing Data?"
#MaliciousApps, #CyberSecurityAwareness, #DigitalSafety, #AppSecurity, #OnlineProtection, #StaySafeOnline, #PrivacyMatters, #TechAwareness, #SecureYourApps, #CyberSmart, #DigitalHygiene
www.linkedin.com/pulse/your-f...
#MaliciousApps, #CyberSecurityAwareness, #DigitalSafety, #AppSecurity, #OnlineProtection, #StaySafeOnline, #PrivacyMatters, #TechAwareness, #SecureYourApps, #CyberSmart, #DigitalHygiene
www.linkedin.com/pulse/your-f...
www.linkedin.com
March 23, 2025 at 7:09 PM
"Is Your Favorite App Secretly Stealing Data?"
#MaliciousApps, #CyberSecurityAwareness, #DigitalSafety, #AppSecurity, #OnlineProtection, #StaySafeOnline, #PrivacyMatters, #TechAwareness, #SecureYourApps, #CyberSmart, #DigitalHygiene
www.linkedin.com/pulse/your-f...
#MaliciousApps, #CyberSecurityAwareness, #DigitalSafety, #AppSecurity, #OnlineProtection, #StaySafeOnline, #PrivacyMatters, #TechAwareness, #SecureYourApps, #CyberSmart, #DigitalHygiene
www.linkedin.com/pulse/your-f...
Understanding Application Security is key to sturdy digital fortresses. Do you implement DevSecOps in your application lifecycle? Share your experiences and let's learn together. #AppSecurity #D #CyberSecurity #InfoSec #DevSecOps #DataProtection
December 28, 2024 at 12:00 PM
Understanding Application Security is key to sturdy digital fortresses. Do you implement DevSecOps in your application lifecycle? Share your experiences and let's learn together. #AppSecurity #D #CyberSecurity #InfoSec #DevSecOps #DataProtection
Hello fellow tech enthusiasts! Are you ready to level up your app security game? Join my newsletter to stay up-to-date on all the content I have created and upcoming events!🔒📈
Sign up for my newsletter today! #AppSecurity #DevSecOps #StaySecure 🔐👨💻
newsletter.shehackspurple.ca
Sign up for my newsletter today! #AppSecurity #DevSecOps #StaySecure 🔐👨💻
newsletter.shehackspurple.ca
July 10, 2023 at 2:28 AM
Hello fellow tech enthusiasts! Are you ready to level up your app security game? Join my newsletter to stay up-to-date on all the content I have created and upcoming events!🔒📈
Sign up for my newsletter today! #AppSecurity #DevSecOps #StaySecure 🔐👨💻
newsletter.shehackspurple.ca
Sign up for my newsletter today! #AppSecurity #DevSecOps #StaySecure 🔐👨💻
newsletter.shehackspurple.ca
4/4 The result? Security review now takes 2 days instead of 2 weeks, and we catch more issues before release.
How have you integrated security testing without slowing down development?
#MobileSecurity #DevSecOps #AppSecurity #corellium
How have you integrated security testing without slowing down development?
#MobileSecurity #DevSecOps #AppSecurity #corellium
May 2, 2025 at 5:45 AM
4/4 The result? Security review now takes 2 days instead of 2 weeks, and we catch more issues before release.
How have you integrated security testing without slowing down development?
#MobileSecurity #DevSecOps #AppSecurity #corellium
How have you integrated security testing without slowing down development?
#MobileSecurity #DevSecOps #AppSecurity #corellium
🧑🎓Learning of the day for me: Last week, via the latest release of the Programmez! magazine, I discovered the FastHTML python web framework.
🤔I wondered what his default behavior was regarding "output escaping" when faced with user-provided data.
#appsec #appsecurity #web #python
🤔I wondered what his default behavior was regarding "output escaping" when faced with user-provided data.
#appsec #appsecurity #web #python
February 16, 2025 at 9:13 AM
🧑🎓Learning of the day for me: Last week, via the latest release of the Programmez! magazine, I discovered the FastHTML python web framework.
🤔I wondered what his default behavior was regarding "output escaping" when faced with user-provided data.
#appsec #appsecurity #web #python
🤔I wondered what his default behavior was regarding "output escaping" when faced with user-provided data.
#appsec #appsecurity #web #python
🔐 Secure Your .NET Apps with Azure Key Vault! 📷 C# devs, simplify enterprise security by managing secrets like a pro. #dotnet #csharp #azurekeyvault #appsecurity www.ottorinobruni.com/azure-key-va...
Azure Key Vault for C# Developers: Securing Secrets in .NET Applications - Ottorino Bruni
Discover how Azure Key Vault enhances security for C# developers. Learn to manage secrets, certificates, and keys securely in your .NET applications.
www.ottorinobruni.com
March 19, 2025 at 8:45 AM
🔐 Secure Your .NET Apps with Azure Key Vault! 📷 C# devs, simplify enterprise security by managing secrets like a pro. #dotnet #csharp #azurekeyvault #appsecurity www.ottorinobruni.com/azure-key-va...
1/6:
🚨 SparkCat Malware Alert: "Safe" apps on Google Play and Apple App Store were stealing crypto wallet recovery phrases from your photos. Here's what happened and how to stay safe 🧵
#CyberSecurity #MobileSecurity #Cryptocurrency #AppSecurity #Corellium
🚨 SparkCat Malware Alert: "Safe" apps on Google Play and Apple App Store were stealing crypto wallet recovery phrases from your photos. Here's what happened and how to stay safe 🧵
#CyberSecurity #MobileSecurity #Cryptocurrency #AppSecurity #Corellium
June 13, 2025 at 3:05 PM
1/6:
🚨 SparkCat Malware Alert: "Safe" apps on Google Play and Apple App Store were stealing crypto wallet recovery phrases from your photos. Here's what happened and how to stay safe 🧵
#CyberSecurity #MobileSecurity #Cryptocurrency #AppSecurity #Corellium
🚨 SparkCat Malware Alert: "Safe" apps on Google Play and Apple App Store were stealing crypto wallet recovery phrases from your photos. Here's what happened and how to stay safe 🧵
#CyberSecurity #MobileSecurity #Cryptocurrency #AppSecurity #Corellium
📡 OWASP Secure Headers Project: To close the 2024 roadmap and prepare for 2025, discussion/issue management has been moved to the main repository.
#appsec #appsecurity #oshp
📖 github.com/OWASP/www-pr...
#appsec #appsecurity #oshp
📖 github.com/OWASP/www-pr...
December 18, 2024 at 7:57 AM
📡 OWASP Secure Headers Project: To close the 2024 roadmap and prepare for 2025, discussion/issue management has been moved to the main repository.
#appsec #appsecurity #oshp
📖 github.com/OWASP/www-pr...
#appsec #appsecurity #oshp
📖 github.com/OWASP/www-pr...
'Deliberate Attack' Deletes Shopping App's AWS and GitHub Resources #Technology #Cybersecurity #CyberAttack #AWS #AppSecurity
'Deliberate Attack' Deletes Shopping App's AWS and GitHub Resources
The CEO of Indian grocery ordering app KiranaPro has claimed an attacker deleted its GitHub and AWS resources in a targeted and deliberate attack and vowed to name the perpetrator. From a report: KiranaPro...
puretech.news
June 4, 2025 at 6:00 AM
'Deliberate Attack' Deletes Shopping App's AWS and GitHub Resources #Technology #Cybersecurity #CyberAttack #AWS #AppSecurity
Warning for foodies! Malware has been discovered in a popular cooking app, RecipeLister. Always be cautious about what you download and keep your devices secure!
#Malware #CyberCrime #MobileSecurity #AppSecurity #DataBreach #StayVigilant
#Malware #CyberCrime #MobileSecurity #AppSecurity #DataBreach #StayVigilant
Recipe for disaster: malware in cooking app RecipeLister
From a harmless kitchen helper to a cyber threat - the case of the "RecipeLister" app shows how cleverly malware is disguised today.
www.it-daily.net
September 9, 2025 at 8:55 PM
Warning for foodies! Malware has been discovered in a popular cooking app, RecipeLister. Always be cautious about what you download and keep your devices secure!
#Malware #CyberCrime #MobileSecurity #AppSecurity #DataBreach #StayVigilant
#Malware #CyberCrime #MobileSecurity #AppSecurity #DataBreach #StayVigilant
🔒 Android 16 QPR2 Beta 2 brings new developer verification system and SMS OTP protection. Big changes coming for app security in 2026. Read more to learn what's changing.
#Android16 #GooglePixel #AndroidDev #AppSecurity
true-tech.net/android-16-q...
#Android16 #GooglePixel #AndroidDev #AppSecurity
true-tech.net/android-16-q...
Google rolls out Android 16 QPR2 Beta 2 with key security and performance upgrades
Google releases Android 16 QPR2 Beta 2 with developer verification, OTP protection, performance boosts, and new Health Connect features.
true-tech.net
September 18, 2025 at 1:59 PM
🔒 Android 16 QPR2 Beta 2 brings new developer verification system and SMS OTP protection. Big changes coming for app security in 2026. Read more to learn what's changing.
#Android16 #GooglePixel #AndroidDev #AppSecurity
true-tech.net/android-16-q...
#Android16 #GooglePixel #AndroidDev #AppSecurity
true-tech.net/android-16-q...
📌 Verification mechanism key to defending apps against malicious attacks. Crucial for web app security. #CyberSecurity #AppSecurity https://tinyurl.com/23dkgv9w
Verification Mechanism Crucial for Web Application Security
The verification mechanism is at the heart of defending applications against malicious attacks. This mechanism is crucial for protecting web applications against various threats. The article does not mention specific technical details or real impacts, but it is clear that this mechanism plays a central role in application security.
tinyurl.com
March 10, 2025 at 9:40 PM
📌 Verification mechanism key to defending apps against malicious attacks. Crucial for web app security. #CyberSecurity #AppSecurity https://tinyurl.com/23dkgv9w
When was the last time you checked your application's security health status? Remember, an unsecured app can be a ticking-time-bomb! #AppSecurity #DevSecOps #CybersecurityAwareness #CyberSecurity #InfoSec #DevSecOps #DataProtection
December 31, 2024 at 12:54 PM
When was the last time you checked your application's security health status? Remember, an unsecured app can be a ticking-time-bomb! #AppSecurity #DevSecOps #CybersecurityAwareness #CyberSecurity #InfoSec #DevSecOps #DataProtection