CSOonline

Decoding Web Application Security

One of the distinctive features of Web-application security is that it employs a positive security model that monitors applications to ensure they behave as originally intended, without relying on ...
CSOonline

An introduction to the murky science of Web application security

Jeremiah Grossman wants you to know that firewalls and SSL encryption won’t prevent a hacker from breaking into your e-commerce website, compromising your customers’ data and possibly stealing your ...
Bleeping Computer

Traditional Pen Testing vs. PTaaS with Web Application Security

While traditional penetration testing (pen testing) has long been the go-to method for identifying security gaps in a organization’s network and web application, a new approach has emerged: ...
Forbes

A Guide For Businesses To Secure Your Web Application In Five Steps

Andrei Neacsu is a cofounder and managing partner at HyperSense. The role of web applications in today's businesses amplifies the repercussions of weak security—leading to potential revenue loss, ...
Dark Reading

SQL Injection Attacks Represent Two-Third of All Web App Attacks

Cyberattackers have several vectors for breaking into Web applications, but SQL injection continues to be by far their most popular choice, a new analysis of attack data shows. For its "State of the ...
InfoWorld

Continuing the Web Server Security Wars: Is IIS or Apache More Secure?

Continuing the theme from my previous column on the relative security of Internet Information Service (IIS) vs. Apache, I’ve come across more studies to support my initial conclusion. Since a single ...