Secure Webtag:typepad.com,2003:weblog-12086322008-04-23T15:59:43-07:00Secure Web is a blog devoted to both technical and business conversations about application security for the Web 2.0 world. TypePadSC Magazine Names Best Buy Winner for Application Vulnerability Assessment Tool tag:typepad.com,2003:post-489144022008-04-23T15:59:43-07:002008-04-23T15:59:43-07:00On April 21, SC Magazine named the Best Buy winner to the application vulnerability assessment tool vendor. The independent review took a look at 7 vendors and gave an overall start rating as well as a summary of their positive...Marie Martin2007 - Another crisis year for Web Security!tag:typepad.com,2003:post-463287382008-02-28T16:30:42-08:002008-02-28T16:30:42-08:00Today we published our application security trend report for Q4 and the full year 2007. And, although there was some progress made by a lot of corporations and government agencies, prognosis continues to be grim. We are barely scratching the...Mandeep Reefer Madness or Session ID Pollution, you choosetag:typepad.com,2003:post-421976722007-11-29T14:44:04-08:002007-11-29T14:44:04-08:00So you can grok the title of this post, anyone remember that awful '50s documentary that tried to scare everyone into not smoking marijana? Reefer Madness! What I am getting at is this: back in early 2004 I reported a...Tom Stracenertag:typepad.com,2003:post-414154682007-11-11T15:45:16-08:002007-11-11T15:45:16-08:00As Holiday Shopping approaches, Web security woes continue With the release of our Q3 Trends report on Web application security on Nov 12th, we continue to see a rise in Application vulnerabilities which formed 68% of all published vulnerabilities in...Mandeep Q3 2007 Trends Report: First Looktag:typepad.com,2003:post-406384822007-10-24T11:22:09-07:002007-10-24T11:22:09-07:00Cenzic's CIA Labs will be releasing our Application Security Trends Report for Q3 2007 next week but I wanted to give our blog readers a first look into our results. First though a few remarks are in order about the...Tom StracenerSymantec Threat report stresses app security, Web security woes continue for Google, Banks, Government tag:typepad.com,2003:post-395294822007-09-28T15:59:41-07:002007-09-28T15:59:41-07:00Symantec Corporation issued their Internet Security Threat report recently confirming a lot of trends that Cenzic had published in its first two quarterly trends report. While there are many malicious activities going on on the Internet from network level worms...Mandeep Web Security and Ease of Doing Business tag:typepad.com,2003:post-391861952007-09-20T12:42:47-07:002007-09-20T12:42:47-07:00The other day I was trying to send some money to some one using one of the money transfer companies. After going through a rigorous process and phone calls for half an hour, I gave up. Good news was that...Mandeep Web App Security, not as Sexy as James Bond but Closetag:typepad.com,2003:post-386981312007-09-10T09:14:39-07:002007-09-10T09:14:39-07:00I saw a news story last week that was kind of surprising to me but really shouldn't have been. An article posted by the Financial Times discussed the Chinese military hacking into the Pentagon. http://www.ft.com/cms/s/0/9dba9ba2-5a3b-11dc-9bcd-0000779fd2ac.html It surprised me because I...Mike KazmierczakHow Web Application Security and Guns are Commontag:typepad.com,2003:post-384481912007-09-04T04:16:02-07:002007-09-04T04:16:02-07:00In an attempt to do the right thing, the Germans aren't really helping themselves. News.com is reporting that "As of Saturday, it's a crime in Germany to build, sell, distribute or obtain so-called 'hacking tools' designed to allow access to...Mike KazmierczakBoth insurance and prevention!tag:typepad.com,2003:post-381762292007-08-28T00:15:30-07:002007-08-28T00:15:30-07:00One of the hardest things about security is getting people to understand and to implement it. This can be small simple things or something more advanced. For example, most of us realize that having a complex password is a good...Mike Kazmierczak