If you haven’t heard of MySpace.com, it’s safe to say you’re not a teenager. MySpace and other social networking sites have skyrocketed in ...
Home
Archive for
2006
Examining the protection provided by SSL
If you’ve attended one of our web application security classes or seminars you’ve probably heard us say “SSL does not provide application se...
Don’t let scammers redirect customer anger at you
A recent edition of the RISKS digest reports on the receipt of an interesting phishing email. Like most phishing attacks, the email infor...
Integrating security into the SDLC
Recently I stumbled upon an article about integrating security into the development lifecycle without adversely affecting the normal develop...
Microsoft releases library to help mitigate cross-site scripting
Many web applications today exhibit security vulnerabilities due to the lack of proper input validation and output encoding. Though numerous...
Web application attacks on the rise
According to statistics gathered by the Web Application Security Consortium and reported by Information Week, attacks against Web applicat...
Google spider deletes application content
A recent item in the news ( http://www.thedailywtf.com/forums/65974/ShowPost.aspx ) reminds us of two important Web application security ti...
Welcome to the Security PS Blog
In security assessment after security assessment we find those organizations that focus on educating employees about of security threats and...
Subscribe to:
Posts
(
Atom
)