SecuRing your software

In our experience, we have discovered that, in many cases, threat modeling sessions are avoided due to the fear…

Find out more about the latest authentication trend and discover technical details behind passkeys.

The story about the customization of iPhone keyboards is a tightrope walk between comfort and security. Given this road full of obstacles…

Smuggling through international borders is a massive-scale problem. History has shown people can smuggle everything, from drugs, money, and…

A security guideline for implementing a Single Sign-On (SSO) integration into your web app.

What to consider when developing a secure cross-chain protocol? Let’s draw conclusions from some of the past cross-chain exploits.

Comprehensive overview of the most common questions about Single Sign-On (SSO). Choose the right standard for your applications.

You have received a security report and wonder what to do next? Here are proven ways to help you introduce a higher level of security.

What is the best place to keep your secrets secure on Android devices? This article shows available methods and our security…

What is front-running and what actions can you take to minimize the negative effects of this attack? Here’s our recommendations to make…

This article contains good practices of AWS Monitoring and Alerting configuration. We also showed a few real-world evasion techniques.

From this article, you’ll learn how to implement protection measures against reverse engineering in your android application.

We present potential threats of performing local authorization on iOS. You will learn how to protect your resources.

This article presents our vision for standard updates in SCSVS.

WebView is in common use in Android applications. Here you will find tips on how to use WebView with security in mind.

What you should consider when trying to securely integrate with SAML Identity Provider.

Secure network communication is one of the most critical aspects of mobile application development. In this article, you will find tips on…

This post discusses how to ensure secure WebViews and how to keep the attack surface restricted.

Reentrancy is as old as Solidity itself, and even older because it’s not the only programming language it appears in. It got a lot of…

This article is an introduction to our open source project: Financial Application Features Security Guide (FAFSG).

Do you want your software to be secure in its DNA? This post is our overview of two possible ways to improve security awareness.

In our security tests and reviews of the AWS infrastructure , we often come across repeated oversights. Here are the most common ones.

In this article, we fooled popular Face Recognition APIs such as Azure Cognitive Services, Amazon Rekognition, and Face++.

This article shows why you should always change the secrets in case they were leaked in previous versions of the application.