Thousands of malicious apps use Facebook APIs

Security firm Trustlook has found at least 25,936 malicious apps using one of Facebook’s APIs, such as a login API or messaging API. Such malicious apps could then use and abuse a range of Facebook login profiles, such as name, location and email address, according to recent blog post.

Continue Reading Thousands of malicious apps use Facebook APIs

GitHub scans and finds 4M vulnerabilities

GitHub ran a security scan to find old vulnerabilities in JavaScript and Ruby libraries in over a half million public repositories. The scan results turned up over four million vulnerabilities and sent alerts to developers to patch the bugs. GitHub is leading software development platform used to host, review and manage software source code, used by millions of developers.

Continue Reading GitHub scans and finds 4M vulnerabilities

OWASP Top 10 2017 Application Security Risks: What’s Changed?

The Open Web Application Security Project (OWASP) released the OWASP Top 10 – 2017. The new standard includes the ten most critical web application security risks. This is the first update since the 2013 version.

Continue Reading OWASP Top 10 2017 Application Security Risks: What’s Changed?