Topics
Tags
Favorite Links
Translate
Pick Your Language
Security Books
Archives
Recent entries...
Twitter
Sponsored Ads
Popular Pages
Sponsored Ads
The Web Security Mailing List

Google's intentions are good, but implementation leave MORE users vulnerable to hacking than before

In 2010 I wrote an article about a flaw Google discovered, and published working exploit code when no fix or mitigation existed. This allowed attackers to immediately start using the flaw to hack Google's own users (in this case, the world). Since then Google has announced a new program 'Project Zero' which...

Posted by Robert A. on 01/26/2015 in Commentary , IndustryNews , Rant , Research , Reviews , SDL , Vendors , Vulns | Permalink | Reddit | Comments (2) | TrackBack (0) | Read more of this story...

My experience with developer security training

I've been busy this past year which has resulted in almost no updates to this site. Consider this one of many rants/posts of my experience/s in the industry during this time. This post covers a topic I think many people implement poorly, which is security training targeting developers. How most people implement...

Posted by Robert A. on 01/20/2015 in Commentary , Defense , Development , Rant , SDL | Permalink | Reddit | Comments (4) | TrackBack (0) | Read more of this story...

Looking for something else or having a hard time finding a story? We recently moved things around so please use the search bar on the right!
Copyright 2000-2009 CGISecurity.com | Privacy Policy| java mailing list| resolve ip| Mailing Lists | Sony deals