Latest posts tagged with #appsecurity on Bluesky
π¬ In JavaScript, the instruction "Function(inputString)()" cause the content of "inputString" to be executed. "Function()" is a constructor that creates a new function from a string of code, similar to "eval()", but slightly more contained.
#appsec #appsecurity
Example of execution.
π§βπ Learning of the day for me thanks to @pentesterlab.com (for the presentation of the behavior and the code review lab) and Claude (for the detailed explanation):
#appsec #appsecurity
Elevate your app security with Azure AD by implementing multi-factor authentication, securing API access, and leveraging conditional access policies. Enhance your defense strategy today! #AppSecurity #AzureAD
Protect your Apple TV apps with advanced RASP+ runtime defense and AppiCrypt API integrity.
Go beyond basic checks to block tampering and API abuse.
π Read more: docs.talsec.app/appsec-artic...
#AppSecurity #DevSecOps
Is Yacine TV Safe to Use?
Many users ask if the Yacine TV app is safe since itβs not available on official app stores.
Learn how to use the app more safely before installing: yacinetvsapk.com
#YacineTV #StreamingApps #AppSecurity #TechReview
Hacked Prayer App Weaponised to Send Surrender Messages to Iranians
#Cybersecurity #Iran #InfoWar #AppSecurity #MiddleEast #AusNews
thedailyperspective.org/article/2026-03-01-hacke...
Overview of one repo
π§βπ As part of my homework on AI from an AppSec perspective, I have decided to gather all my content on GitHub so that I can share it in case anyone is interested.
π Cheat sheet, methodology and tools: github.com/righettod/to...
π¬ R&D: github.com/righettod/po...
#appsec #appsecurity #ai
Is Yacine TV App Safe to Use? Full Security Review
Before installing any third-party streaming app, safety comes first. We analyzed Yacine TV by checking its permissions, running security tests, and reviewing user feedback.
yacinetvsapk.com/yacine-tv-ap...
#YacineTv #AppSecurity #StreamingApp
Android mental health apps with 147M installs were found riddled with security flaws β when care meets code, privacy must be non-negotiable. π±π§ #AppSecurity #HealthDataProtection
1,575 vulnerabilities found in 10 Android mental health apps (14.7M+ installs).
Issues include weak token generation, local data exposure, missing root detection.
These apps store therapy transcripts and CBT notes.
Are digital health apps secure enough?
#CyberSecurity #AndroidSecurity #AppSecurity
Most βfreeβ apps hoard more data than they need, from pregnancy trackers to flashlights, then quietly ship it to third parties. If an app wouldnβt survive without spying, maybe it shouldnβt. #AppSecurity #DarkPatterns #Infosec
devpathshala.com/most-dangero...
Choosing Android App Development Services for Security
Discover key factors like secure coding practices, encryption standards, regular testing, & industry expertise to ensure your mobile app remains safe & reliable for users.
Read More: medium.com/@cssoftsolut...
#AndroidDevelopment #AppSecurity
Web Application Firewall Market Size, Share, Analysis 2035 www.marketresearchfuture.com/reports/web-...
#WebApplicationFirewall #CyberSecurity #ICTInnovation #SmartSecurity #EmergingTech #DigitalProtection #AppSecurity
π The Role of Staff Augmentation in Enhancing Web Application Security
Learn how staff augmentation helps strengthen web app security by adding specialized expertise.
π Read the full article:
www.ortussolutions.com/blog/the-rol...
#WebSecurity #StaffAugmentation #AppSecurity #DevOps
I just published App Permissions and Security Basics: Essential iOS Interview Questions with Expert Answers medium.com/p/app-permis...
#iOS #iOSDeveloper #Swift #iOSSecurity #AppSecurity #MobileSecurity #iOSInterview #TechInterview #AppleDeveloper #Keychain #Biometrics #SwiftUI #iOSDevelopment
Execution of the POC performed.
π§βπ Learning of the day for me thanks to @pentesterlab.com and Claude.
π¬ For the regular expression "[A-z]":
In a character class [X-Y], it matches all characters with ASCII codes from X to Y inclusive. So [A-z] means all ASCII characters from 65 (A) to 122 (z).
#appsec #appsecurity
ICYMI, Jan. 26β30 is #DataPrivacyWeek. Check out this short post and quick guide to privacy settings for 18 common apps from @wizertraining!
tinyurl.com/privacy-sett...
#AppSecurity #MobileSafety #OnlinePrivacy #OnlineSafety #StayWizer
POC performed.
π§βπ Learning of the day for me: I discovered that browsers (at least Chromium) display an SVG image even if the specified content type is set to XML. The contained JS script is also executed.
#appsec #appsecurity
Firehound reveals massive data leaks in App Store apps, exposing millions of users' personal info. Time for developers to prioritize security! #DataPrivacy #AppSecurity #FirehoundFindings Link: thedailytechfeed.com/firehound-re...
Overview of the page.
π‘ OWASP Secure Headers Project: We have added information and examples regarding the Trusted Types feature of the Content-Security-Policy header.
π owasp.org/www-project-...
#appsec #appsecurity #owasp_shp
How VAPT Strengthens Mobile App Security: Essential Insights for Business Owners
π Read here: www.linkedin.com/pulse/how-va...
#MobileAppSecurity #VAPT #CyberSecurity #DataProtection #BusinessSecurity #PenetrationTesting #VulnerabilityAssessment #AppSecurity #ECSInfotech #ECS
π£ New Podcast! "Unmasking "Wonderland" β The New Wave of Android Droppers & SMS Stealers" on @Spreaker #androidmalware #approov #appsecurity #cybersecurity #infosec #mobilesecurity #technews #upwardlymobile #wonderlandmalware
Engenharia de software moderna
#computer #computador #Technology #tecnologia #software #softwaredevelopment #softwareengineer #softwaredeveloper #engenharia #engenhariadesoftware #softwaretesting #segurancadigital #AppSecurity #devops #desenvolvimentoweb #mobile
www.moprius.com/2026/01/enge...
Securing Secrets in Android: What Actually Works in Production In Android apps, nothing on the client is truly secret . APKs can be decompiled, strings extracted, memory inspected, and runtime beha...
#android #androiddev #appsecurity #kotlin
Origin | Interest | Match
Security concerns emerged regarding F-Droid's build server, currently managed by a long-time contributor. This raises questions about transparency and potential risks compared to professional hosting solutions. #AppSecurity 3/6
Secure your mobile apps: encrypt data, test regularly, and stay updated with security patches. #AppSecurity #TechTips
#softwaredevelopment
Visit our website www.maxvisionsolutions.com
GitHub just rolled out the ability for orgs to control who can request new apps. This is a game-changer for IT teams trying to manage app sprawl and security. No more random requests from everyone! Finally. π #GitHub #AppSecurity
Duende IdentityServer v7.4 is here! π Shipping with .NET 10 LTS, so you can modernize your apps and build solutions engineered to last. π
duende.link/5pwbntg
#Duende #IdentityServer #dotnet10 #LTS #AppSecurity
The "Freedom Chat" app itself leaked plaintext PINs & user data due to poor development practices like lacking rate limiting & proper data serialization. A stark reminder of basic security principles being overlooked. π€¦ββοΈ #AppSecurity 4/6
π‘ Very interesting article about output escaping in an API context:
#appsec #appsecurity #api
treblle.com/blog/api-esc...
