With the recent emphasis on application security, organizations now strive to fix web app security vulnerabilities earlier in the SDLC, before apps are deployed in order to lower the risk of potential data breaches.
So now that I’ve established myself as a lover of FB and social media, may I ask that you all please carefully consider which additional new and (worse) seldom-used applications that you grant permission to “Log On with Facebook?” (Or Google+, or Twitter – I’m not just targeting any one federated login mechanism.)
This week, it was reported that certain versions of the Apache Struts 2 Framework are vulnerable to Remote Code Execution attacks.
WhitHat Security is pleased to kick off the WhiteHat Certified Secure Developer (WCSD) Program. It is open to all developers free of charge and gives developers that essential jumpstart into understanding app security at a deep technical level.
As we head into the new year, we thought we’d share our 5 most watched webinars of 2016. Like “must see TV”, these are well worth taking the time to watch and learn from!
The term “API economy” has become part of the business vernacular because APIs have proven to be a great way for businesses to increase their value by making their core functionality available to more people.
With election season drawing to a close, the topic of internet security – now mentioned in numerous debates/campaigns on both sides – needs to stay a focus of attention. From standards and governance to education and future staffing, here is a plea to keep campaign promises for cyber security attention on the next President’s agenda.
Vendor security has been a hot topic in 2016. Organizations are taking a holistic approach to security, going beyond reviewing their own security practices to evaluate and monitor their vendors’ security practices as well.
As first seen on the RSA blog, Setu Kulkarni discusses putting the "app" back in "appsec."
Application Security is, in many ways, something your banks, your hospitals, your games, and all your online eCommerce and transaction people try to take care of for you. But no one is perfect. No company has all the right answers.