Next 16th June 2018 an OWASP Day-Bsides event will be held at the "Politecnico di Milano" thanks to Prof. Stefano Zanero. You can read the full details here. Reserve your seat!
Thanks to professor Camil Demetrescu and the CyberChallenge team, Gianrico Ingrosso and Mauro Gentile from Minded Security did a lesson on Web Application Security topics.
Minded Security's Magik Quadrant for Mobile Code Protection shows our evaluation of the top vendors in this market, based on our research and experience, updated to 2018. Take a look at the full blog post!
Shhlack is an extension for Slack and brings end-to-end encrypted messages in Slack workspaces. Shhlack is available as Google Chrome Extension, Firefox Addon, Slack Standalone Patcher (Windows/MacOS/Linux). Read the full blog post here. Here you can read the Daily Mail article and an Interview with Stefano Di Paola.
While testing the VRView web application we discovered a DOM Based Cross-Site Scripting Vulnerability in the handling of errors through an inappropriate use of the "innerHTML" property. The use of this property must be combined with the encoding of the data before it is used for data assignment, and in this case it wasn't used safely. Read the full blog post!
David Cervigni, from Minded Security, will talk at the OWASP Taiwan Chapter next 20th November about client side security and DOM based XSS.
With more than 60.000 attendees, more than 1.000 speakers 2.200 journalists, and more thant 160 countries involved it seems that the Web Summit will be the largest tech conference in the world! Minded Security will be at the WebSummit 2017 presenting BlueClosure BC Detect. Join us at Web Summit in Lisbon next 6-9 November for a 3-days conference and exhibition of the latest BlueClosure Enterprise release!
Minded Security named Cyber Security Leader 2017 by Cyber Defense Magazine.
The OWASP Italy Day conference will take place next 20th October 2017 at the University of Cagliari. Gary McGraw, the Vice President Security Technology of Synopsys (SNPS) will be the keynote of the event. Federico Fazzi from Minded Security will talk about "The OWASP Top 10 Proactive Controls v2".
Stefano Maistri, security consultant at Minded Security, will present "Malware detection e modellazione comportamentale os agnostic" at the next HackInBo conference.
Matteo Meucci, CEO at Minded Security, will talk about "OWASP: i nuovi standard per la sicurezza applicativa" at the next ISACA OWASP Conference in Venice.
Minded Security will be present at Cybertech Europe 2017 in Rome on September 26-27 for a 2-day conference and exhibition of the latest BlueClosure Enterprise release!
Fabrizio Bugli, senior software security consultant at Minded Security, will talk about "(3rd) Party like nobody's watching" at the OWASP Italy corner.
neXtquotidiano interviewed Fabrizio Bugli, senior security consultant at Minded Security, about facebook scams (article in Italian).
Matteo Meucci, CEO of Minded Security, presents the OWASP Testing Guide v4.
Matteo Meucci, CEO of Minded Security, presents the OWASP Testing Guide v4 (3h) at the Summer School on Computer Security & Privacy.
Sean Martin of Search Security Interviewed Matteo Meucci, CEO of Minded Security: http://searchsecurity.techtarget.com/feature/How-to-start-building-an-enterprise-application-security-program
Pierluigi Paganini, Security Affairs, interviews Matteo Meucci, CEO of Minded Security: http://securityaffairs.co/wordpress/49552/hacking/hacker-interviews-matteo-meucci.html
Minded Security is present at the OWASP AppSec Europe 2016 in Rome with "Hacking and Securing iOS Applications" which is a one day course held by Davide Danelon and Simone Bovi.
Minded Security is sponsoring the AppSecEU 2016 in Rome next June 2016: http://2016.appsec.eu/
Minded Security is Excited and Proud to have contributed to "Cyber Security Guidelines for Smart City Technology Adoption".
Giorgio Fedon will talk about new attacks to the users: "Oltre i malware: gli effetti sgradevoli degli attacchi ai client" http://www.festivaldelgiornalismo.com/programme/2016/beyond-malware-the-nasty-effects-of-client-side-attacks
Matteo Meucci will talk about: "Attacking online services": http://www.festivaldelgiornalismo.com/programme/2016/attacking-online-services
Matteo Meucci will give a talk regarding OWASP for developers: http://rome2016.codemotionworld.com/conference/19-March/
Simone Bovi and Davide Danelon will talk about mobile security: https://www.securitysummit.it/milano-2016/seminari-associazioni/talk-257/
Stefano Di Paola did the keynote for the Winter School SECENTIS http://secentis.fbk.eu/progam-new awesome people, awesome venue!
Minded Security participates to new "cyberRange" project by Prof.Armando and Italian Government with the University of Genova, Aizoon, FinMeccanica.
Article on Software Security Governance by Matteo Meucci (ITA), CEO of Minded Security: http://www.forumpa.it/sicurezza/per-un-software-sicuro-la-pa-riveda-il-rapporto-con-il-fornitore-ecco-come
Interview with Matteo Meucci, co-founder and CEO of Minded Security, about Made in Italy information security.
Minded Security is an Italian excellence in Cyber Security according to the financial newspaper "Il Sole 24 Ore".
Matteo Meucci, CEO and cofounder of Minded Security where he is responsible for strategic direction and business development, presents "OWASP for developers". This talk will introduce the Open Web Application Security Project, the tools and the methodologies for the Developers to help improving software security.
Matteo Meucci, CEO and cofounder of Minded Security, talked about Software Security in Practice at the AIEA Turin Chapter. You can read the presentation on our blog http://blog.mindedsecurity.com/2015/11/software-security-in-practice.html
Marco Morana, Managing Director Minded Security UK, participates to the Infosecurity Magazine Virtual Conference session "Know Your Adversary: Gathering Intelligence on Attacks" where panelists discuss how information security professionals can arm themselves with the intelligence required in order to really know adversaries.
Minded Security will present technologies for malicious software detection at NIAS2015 Cyber Security Symposium in Mons, Belgium during the “Give me 5” sessions.
Marco Morana, MD and Partner of software security company, Minded Security and mentor to start-ups based in Citi's Innovation Lab - Tel Aviv, and in London based accelerators Level 39 and CyLon will talk about threat modelling as an advanced preventive form of security at the next London CyberTech MeetUp. He will give examples of how to identify threat countermeasures that are commensurate to the possible impact that could be sustained from defined threat models, vulnerabilities, weaknesses, and attack patterns.
Stefano Di Paola, CTO & Chief Scientist at Minded Security, has been invited to the workshop and will talk about "Sandboxing HTML pages with API wrappers as a countermeasure to malicious third party code attacks. A lesson learned."
Most of the challenges that CISOs face today when tackling the increased risk represented by cyber-attacks targeting web applications are common with other CISOs. Sharing perspectives and lessons learned can be very useful. There is no need to share confidential information but best practices. Marco Morana, Managing director of Minded Security UK, will moderate the discussion among several topics of CISO interest.
July, 3rd - London, Fraud and Risk Round Table Discussion: Banking Malware Detection and Fraud Prevention
Marco Morana, Managing director of Minded Security UK, will talk about banking malware attacks what a fraud risk manager can do to protect its banking customers from malware compromise and the bank from wire fraud losses.
Marco Morana, Managing director di Minded Security UK, terrà una lezione dal titolo "Process for Attack Simulation and Threat Analysis" al Master di II livello dell'università di Genova.
Matteo Meucci, CEO di Minded Security, farà una lezione sul tema della Web Application Security per il Master di II livello dell'Università di Genova.
Recent versions of the content management system (CMS) Concrete5 address several vulnerabilities, including security holes reported by Italy-based researcher Egidio Romano of Minded Security.
Minded Security è Golden Partner dell'evento Banche e Sicurezza 2015 dell'ABI.
Minded Security parteciperà alla XII edizione dell'evento dell'Associazione Bancaria Italiana dedicato alla sicurezza nel settore finanziario.
June, 3rd - London Engineering Attack Resilient Software Applications - Processes and Activities for Building Security in the SDLC
Marco Morana, Managing director of Minded Security UK, will present how various innovative application security processes such as attack simulation and testing as well as software security consulting activities together with training and awareness can help organizations meet compliance goals as well as mitigate the risk of emerging threats.
Minded Security UK is present at the InfoSecurity Europe 2015 conference and exhibition.
Marco Morana, Managing director of Minded Security UK, will show how AMT technology is able to detect all types of malware banking and will talk about DOMinatorPro. During this presentation we will show case these two products and show videos with the details on how these products operate to detect and prevent web injection fraud as well as DOM XSS vulnerabilities.
Minded Security UK has been selected as one of top 11 Cyber Security innovation Start-ups in UK!
Matteo Meucci, CEO of Mined Security, explains in a 10-minute lightning talks the Testing Guide version 4, the de facto standard for performing web application penetration testing.
SSL flaw puts thousands of iOS apps at risk
Matteo Meucci, CEO of Minded Security, talks about the OWASP Testing Guide v4 and presents banking malware detection case studies.
Programmi come Ask.Fm, Alibaba o alcuni Disney, per un totale di 1500 applicazioni dello store Apple hanno una falla che può permettere il furto di dati sensibili.
Are YOU at risk? Bug found in apps including Uber and Microsoft's OneDrive is leaving MILLIONS of users vulnerable to hackers.
1,500 iOS apps have HTTPS-crippling bug. Is one of them on your device? Apps downloaded two million times are vulnerable to trivial man-in-the-middle attacks.
iOS, OS X library AFNetworking patches MiTM vulnerability.
Flash-based vulnerability lingers on many websites three years later. A large number of developers have failed to patch their Flash applications against a vulnerability that can be exploited to target Web users.
Adobe Flash fix FAIL exposes world's most popular sites.
Flash-based vulnerability lingers on many websites three years later.
A four year old Adobe Flash patch did not properly resolve a vulnerable Flex application, and attackers can exploit the bug, which is said to affect some 30 percent of Alexa’s top 10 most popular sites in the world.
Egidio Romano, Security Consultant at Minded Security, talks about the Object Injection vulnerability for PHP at the Security Summit in Milan during the OWASP Italy Chapter day.
Matteo Meucci, CEO of Minded Security, presents the new version of the OWASP Testing Guide.
A huge spam campaign has been installing the Dyreza banking Trojan on tens of thousands of UK computers, specifically targeting those with accounts at major banks.
Minded Security launches 'agentless' bank security tool in UK
Morana and Meucci interview - John E Dunn
Malware infects one in twenty banking customer devices
"Trusteer vs. Minded Security in fighting financial fraud" - Kevin Towsend
1 in 20 banking customers devices is infected by malware according to Minded Security
1 in 20 Banking Customer Devices Is Infected With Malware, According to Minded Security
Minded Security launches 'agentless' bank security tool in UK
"European banks getting targeted by malware" - Doug Drinkwater
Minded Security launches AMT Banking Malware Detector in UK
Minded Security Launches Tool to Counter Hidden Banking Malware
Marco Morana talked about Cyber Security Threats.
Banking Malware Poses New Threats Early Detection Is Critical for Fraud Prevention