ActiveXchromeclickjackingGuy AharonovskyJavaJVMOWASPPopjackingVBScriptWhatsApp All You Wanted To Know About Web Browser Security Oct 21, 2015 by Sharon Solomon The web browser has come a long way since its invention in late 1990. Google Chrome, Mozilla Firefox, Apple Safari and Microsoft Explorer/Edge have now taken the world by storm with their evolving user-friendly features. They have boosted productivity significantly thanks to their seamless integration with leading third-party applications and plug-ins. Unfortunately, web browser security is an Read More › ActiveXchromeclickjackingGuy AharonovskyJavaJVMOWASPPopjackingVBScriptWhatsApp
JavaSecure Developer 9 Security Mistakes Every Java Developer Must Avoid May 18, 2015 by Sarah Vonnegut Java has come a long way since it was introduced in mid-1995. Its cross-platform characteristics have made it the benchmark when it comes to client-side web programming. But with cybercrime and hackings reaching epidemic levels due to its widespread usage and distribution, the need for secure Java development has become the call of the hour. Read More › JavaSecure Developer
Data Security BreachJavaMalwareSearsYahooYouTube Your Weekly Security Wrap-Up: Yahoo, Sears, YouTube & More Mar 2, 2014 by Sarah Vonnegut Yahoo’s in the news again with a new vulnerability (now fixed) and a starring role, unknown to them, in the Brit’s surveillance methods. With Sears possibly facing another breach and a cache of 360 million user credentials found for sale on the black market, there’s a lot to know about so take a few minutes Read More › Data Security BreachJavaMalwareSearsYahooYouTube
Application SecurityJavapath manipulationSASTstatic code analysis Path Manipulation, Directory Traversal, and interesting JAVA code Jan 10, 2012 by Checkmarx Directory Traversal Attacks Directory Traversal (CWE: 22) is usually considered a subset of Path Manipulation (CWE: 73). Directory Traversal, also referred to as Path Traversal, attacks occur by manipulating variables with the ‘../’ (dot-dot-slash is another name this attack sometimes goes by) sequences, and attempt to access directories and files stored in a system. Path Directory Read More › Application SecurityJavapath manipulationSASTstatic code analysis