Cyber Security Requirements for Application Development Projects
Overview: There are several Cyber Security requirements that should be considered before the development of any kind of application. Organizations must ensure that any new software application project or changing…
Google Patches Two More Zero-Day Vulnerabilities in Chrome
Google has released an urgent security patch for its Chrome Browser to fix a new pair of Active Zero-Day Vulnerabilities exploited by the attackers in the wild. The emergency security…
STRIDE Methodology in Threat Modeling Process
Overview: This document defines a systematic process of STRIDE Methodology used in organizations to find security threats and prevent them to build a secure application or system. The main goal…
OWASP Top 10 – 2021 Vulnerabilities
What is OWASP? The OWASP (Open Web Application Security Project) was established in 2001 as an open-source security community focused on the goal of circulating application security awareness. OWASP is…
Urgent Patch for Active Zero-Day Vulnerability in Google Chrome
Google released an emergency security patch for the Chrome Browser which is affected by Active Zero-Day Vulnerability exploited in the wild. The urgent security update is rolled out worldwide to…
Threat Modeling Procedure in Application Security
Overview: This document defines the structured methodology of Application Threat Modeling used in organizations that identify, enumerate and prioritize mitigations for the security vulnerabilities related to the application. It will…
Secure SDLC | Secure Software Development Life Cycle Procedure
Introduction: Secure Software Development Life Cycle (S-SDLC) methodology is the need of the hour for the organizations to adapt to ensure that their software is Secured and all the security…
Microsoft fixed Zero-day Vulnerability of MS office 365 & MSHTML
Microsoft has released the patch for actively exploited Zero-Day vulnerability using Microsoft Office documents and MSHTML. Microsoft has associated this vulnerability with CVE-2021-40444. This patch is released as part of…
Apple Released Security Fix for Pegasus Zero-Click Vulnerability
Apple issued an emergency critical software security update for the vulnerability in its products running iOS 14.8, iPadOS 14.8, watchOS 7.6.2 and macOS Big Sur 11.6. This flaw is related…
OWASP Top 10-2021 Draft Released for Peer Review
The Open Web Application Security Project (OWASP) released a draft edition of all-new OWASP Top 10 – 2021 Vulnerabilities list on its official website for peer review. The list contains…