An Open Letter to Barack Obama: If You aren’t Sure of Health Exchange Security, Shut it Down Now

Stability in Only the First Issue – Security Will Be Healthcare.gov’s Real Achilles Heel There has been a significant amount of attention to the the problems of the Obamacare website. While these problems are certainly…

Full Article →

If at first you don’t succeed, you’re hosed: The criticality of authentication in web scanning

We appreciate Kevin Beaver’s recent blog post about NTOSpider’s unique ability to authenticate on some of the trickiest applications and stay properly logged-in throughout the scan. At NTO we take pride in helping our customers by solving the automation problems that…

Full Article →

Webcast: SQLInjection Vulnerabilities Hidden in New Places

Why are your applications still suffering from SQL Injection Vulnerabilities? Even though we know so much about SQL Injection, we have a perfect storm brewing for serious security problems in many modern applications. The perfect…

Full Article →

7 Deadly Sins: Unlock the Gates of Mobile Hacking Heaven

I’ve spent the past year hacking mobile applications in an effort to uncover the most common security mistakes made during development. I found that most of the problems are related to session management – the…

Full Article →

HO-FFL Update

We are now in the middle of week 4, but I want to catch everyone up on whats been happening. First of all, I am currently ranked 10th in our 12 team league. Wow, that’s…

Full Article →

Mobile Application Security: Think Twice Before Placing Football Bets

Have you heard about the vulnerability in the Yahoo! Fantasy Football app? If Knowshon Moreno’s performance on Monday against the Oakland Raiders got you down, you might want to read this warning to fantasy football…

Full Article →

Four Reasons Security Teams Can’t Stop SQL Injection Vulnerabilities

SQL injection vulnerabilities have threatened application security for years. So why are they still quite common, despite the fact that we, as an industry, should know how to prevent them? Clearly, if eradicating the vulnerability…

Full Article →

Eight Reasons Why SQL Injection Vulnerabilities Still Exist: A Developer’s Perspective

Knowing how to prevent a SQL injection vulnerability is only half the web application security battle. A multitude of factors come into play when it comes to writing secure code, many of which are out…

Full Article →

An Information Security Place Podcast – 8-20-13

The podcasting returns! This is the first new episode of InfoSec Place and in a few days will be the return of my web security podcast here on Man Vs Webapp (formerly Mightyseek). Show Notes:…

Full Article →

Hacking Fantasy – Hackers Only Fantasy Football League

This November I will be presenting at AppSec USA, Revenge of the Geeks: Hacking Fantasy Football. So this year, I am starting a hackers only fantasy football league. Come join us to have fun and…

Full Article →

Page 1 of 2212 3 4 5 6 Next ›Last »