Clik here to view.
Weekly Industry Round-up, Week of 4/12
SC Magazine… Apache.org Hit by Targeted XSS Attack The open-source Apache Software Foundation recently suffered a cross-site scripting (XSS) attack against its infrastructure—resulting in users’...
View ArticleClik here to view.
OWASP Updates Top 10 List
Today, OWASP announced an updated list of the top 10 risks associated with the use of web applications in an enterprise. This is the first time the list has been updated since 2007. The report...
View ArticleClik here to view.
hyperguard Covers PCI DSS’ New “Un-validated Redirects and Forwards” Risk
You have probably heard that the PCI DSS requirement 6.5 has been impacted by the updated OWASP’s Top 10 Web application risk ranking. Specifically, new risks “security misconfiguration” and...
View ArticleClik here to view.
Weekly Industry Round-up, Week of 4/19
Around the blogosphere… There has been a lot of discussion this week around Microsoft’s plans to fix an Internet Explorer 8 cross-site scripting problem. Microsoft will plug a hole in a built-in filter...
View ArticleClik here to view.
art of defence Integrates hyperguard with WhiteHat Sentinel
We recently announced a partnership with WhiteHat Security to integrate hyperguard and the WhiteHat Sentinel website vulnerability management service. Enterprises, web hosting and cloud service...
View ArticleClik here to view.
Weekly Industry Round-up, Week of 4/26
Ponemon Institute… eWEEK and Dark Reading discussed two reports issued by the Ponemon Institute this week. The first, commissioned by Imperva and WhiteHat Security, found that 70 percent of the...
View ArticleClik here to view.
Weekly Industry Round-up, Week of 5/3
Bank Info Security… Tippett’s Top 10 Security Predictions In this post, Peter Tippett, head of Verizon’s information security team says security protection in the next 10 years will become more...
View ArticleClik here to view.
Strong Passwords for Developers
Came across a new blog this week—EthicalHack.co.uk that we wanted to share with our readers. It is written by Vishal Garg, and dedicated to application (hacking) security. A great read, and...
View ArticleClik here to view.
Weekly Industry Round-up, Week of 5/10
SearchSecurity.com… Study on Security in Cloud Computing Shows Angst, Rogue Users According to a new study, many IT professionals in Europe and the U.S. acknowledge that cloud computing risks are being...
View ArticleClik here to view.
Weekly Industry Round-up, Week of 5/17
Information Management… Rejecting Injections, to Protect Customer Records Last month, the Financial Industry Regulatory Authority announced that it was fining Montana-based broker-dealer D.A. Davidson...
View ArticleClik here to view.
Defining a New WebAppSec Role
As a recent WhiteHat and Ponemon Institute report points out, Web application security is a mess today. In part, this is due to miss-ownership of key technologies such as the WAF. Organizational change...
View ArticleClik here to view.
Weekly Industry Round-up, Week of 5/24
SearchCIO.com… Cloud Computing Basics: Planning and Understanding a Cloud Strategy This article by John Weathington says there’s still a lot of confusion around what the cloud is and there shouldn’t...
View ArticleClik here to view.
Weekly Industry Round-up, Week of 5/31
ChannelWeb… Facebook Clickjacking Worm Infects Thousands Last week we mentioned how clickjacking attacks use malicious iFrames inserted into a Web page to hijack a user’s Web session. Then, over the...
View ArticleClik here to view.
Google’s SaaS Contract with Los Angeles
Los Angeles recently selected Google Apps to provide the city with cloud services, which over 30,000 of its employees will use. After hearing this news, we came across a blog post that looks at Los...
View ArticleClik here to view.
Weekly Industry Round-up, Week of 6/7
CIO… Cloud Computing: Would PCI Compliance Help or Hurt Security? This article discusses whether cloud computing environments can meet PCI compliance standards. Many security experts say they can’t...
View ArticleClik here to view.
Weekly Industry Round-up, Week of 6/14
eSecurityPlanet… Can Federal Data Privacy Live on in the Cloud? For government, privacy and data security are a priority, and now many government IT agencies are planning to move their computing...
View ArticleClik here to view.
Weekly Industry Round-up, Week of 6/21
CTO Edge… Security and Compliance in the Cloud Age This article by Alert Logic’s Misha Govshteyn says that while the debate over private vs. public clouds carries on, there is very little attention...
View ArticleClik here to view.
Free dWAF Evaluation for Breach Security Customers and Partners
Following the recent Trustwave and Breach Security acquisition, we will be providing Breach customers with a free evaluation of our distributed Web application firewall (dWAF) solution, hyperguard....
View ArticleClik here to view.
Weekly Industry Round-up, Week of 6/28
SC Magazine… Universityof Maine Student Data Exposed Hackers have compromised two University of Maine servers that were hosting personal and clinical information of more than 4,500 students who...
View ArticleClik here to view.
Weekly Industry Round-up, Week of 7/5
Data Center Journal… Security and Legal Concerns Hamper Cloud Jeffrey Clark says the cloud offers a number of benefits, both from the perspective of increased business value and from the perspective of...
View Article
