Stay Informed and Never Miss an AppSec Story Again

* indicates required
Email Format
Close

Recent Blog Posts & News

Top Risks and Recommendations For Windows Store Apps

This article originally appeared on Microsoft Developer Connection   OWASP’s Mobile Top 10 is a project launched by OWASP to identify the top 10 risks and threats to mobile apps at large. The project highlights the risk, the impact it …

Read more…

  • twitter
  • facebook
  • linkedin
  • rss
WindowsStoreApps
Posted in Security | Leave a comment

Federated Identities: OpenID vs SAML vs OAuth

Single sign-on (SSO) started it all. Organizations needed a way to unify authentication systems in the enterprise for easier management and better security. Single sign-on was widely adopted and provided a solution for keeping one repository of usernames and passwords …

Read more…

  • twitter
  • facebook
  • linkedin
  • rss
Posted in Security | Leave a comment

ASP.NET Security Code Review Techniques: SQL Injection Edition

This article appeared originally on Microsoft Canadian Developer Connection   What is SQL Injection SQL Injection is a programming weakness where the application dynamically constructs sql queries using string concatenation of unsantized data. Imagine the following scenario where the application …

Read more…

  • twitter
  • facebook
  • linkedin
  • rss
Posted in Security | Leave a comment

ASP.NET Security Code Review Techniques: Cross-Site Scripting Edition

This article originally appeared at Microsoft Canadian Developer Connection. What is cross-site scripting?   Cross-site scripting is an attack that allows an attacker to inject malicious code (usually JavaScript) into the HTML generated by web applications. The history of cross-site …

Read more…

  • twitter
  • facebook
  • linkedin
  • rss
Posted in Security | Leave a comment

4 Free Steps To Kick-off 2013 on The Right AppSec Foot

New year’s is when a lot of new resolutions are made and unfortunately a lot of them fail too. A 2007 study by Richard Wiseman from the University of Bristol involving 3,000 people showed that 88% of those who set New Year resolutions fail, despite the …

Read more…

  • twitter
  • facebook
  • linkedin
  • rss
Starting with Application Security
Posted in Security | Leave a comment

Lessons Learned From Implementing Application Security Programs

Many organizations are realizing the importance of application security, given that 73% of organizations have been hacked at least once in the past two years through insecure Web applications, but introducing an application security program to larger organizations can still …

Read more…

  • twitter
  • facebook
  • linkedin
  • rss
lessons
Posted in Security | Leave a comment

A Non-Hi-Tech Solution To a Hi-Tech Problem

The Cost is Going Up The cost of data breaches continue to climb, Global Payments which back in the spring reported a data breach in which information associated with an estimated 1.4 million payments cards was stolen, has revealed that …

Read more…

  • twitter
  • facebook
  • linkedin
  • rss
Security Checklist
Posted in Blog Posts, Security, Security Education, Software Secured | Leave a comment

Why You Should Attend AppSecUSA – LASCON Edition

AppSec USA – LASCON Edition from skoussa
  • twitter
  • facebook
  • linkedin
  • rss
Posted in Security, Security Education, Software Secured | Leave a comment

Usability and Security in Registration Pages – Meetup Ottawa

So it seems Software Secured is on a speaking frenzy. Christine and myself are doing a joint talk this Tuesday, June 26th at The Code Factory. The talking is touching on the subject of Usability and Security and how the gap …

Read more…

  • twitter
  • facebook
  • linkedin
  • rss
Posted in Career, Design, Security, Security Education, Software Secured, Usability | Leave a comment

N00bs Night: Secure Code Review – OWASP Top 10

Software Secured will be holding a N00bs Night on Secure Code Review. For more information please visit OWASP Ottawa’s page https://www.owasp.org/index.php/Ottawa. And to register please visit http://www.eventbrite.com/event/3692574590
  • twitter
  • facebook
  • linkedin
  • rss
Posted in Blog Posts, News, Security, Security Education | Leave a comment

Subscribe to our newsletter