IT Security Expert Blog

A UK view on Cyber (IT Security) & Information Security. Covers everything Computer Security from the basics to the advanced. A blog with a focus on the latest Cyber Security developments & issues within the UK, including Hacking, Privacy (GDPR), Data Breaches, and compliance like PCI DSS &amp, Cyber Essentials & ISO27001:2013, all will be explained simply.

Tuesday, 12 December 2017

Scan your app to find and fix OWASP Top 10 - 2017 vulnerabilities

Following the updated release of OWASP Top Ten (2017), I have updated my IBM developerWorks article "Scan your app to find and fix OWASP Top 10 - 2017 vulnerabilities", which was released on the IBM Developer Works website today
Posted by Dave Whitelegg at 23:30 No comments:
Email ThisBlogThis!Share to TwitterShare to FacebookShare to Pinterest
Labels: application security, ibm, OWASP
Newer Posts Older Posts Home
Subscribe to: Posts (Atom)
Click here for the IT Security Expert Website
Part of the

Cyber Security Expert Website
Tweets by @SecurityExpert Dave Whitelegg Media Info

Subscribe To

Posts
Atom
Posts
All Comments
Atom
All Comments

Search IT Security Expert Blog

Blog Archive

  • ►  2019 (15)
    • ►  February (5)
    • ►  January (10)
  • ►  2018 (27)
    • ►  December (3)
    • ►  November (3)
    • ►  October (2)
    • ►  September (4)
    • ►  August (1)
    • ►  July (2)
    • ►  June (1)
    • ►  May (2)
    • ►  April (1)
    • ►  March (2)
    • ►  February (3)
    • ►  January (3)
  • ▼  2017 (38)
    • ▼  December (1)
      • Scan your app to find and fix OWASP Top 10 - 2017 ...
    • ►  November (2)
    • ►  October (3)
    • ►  September (7)
    • ►  August (4)
    • ►  June (5)
    • ►  May (5)
    • ►  April (3)
    • ►  March (3)
    • ►  February (2)
    • ►  January (3)
  • ►  2016 (23)
    • ►  December (4)
    • ►  November (4)
    • ►  October (2)
    • ►  September (4)
    • ►  August (1)
    • ►  July (1)
    • ►  June (1)
    • ►  May (1)
    • ►  April (2)
    • ►  March (1)
    • ►  February (1)
    • ►  January (1)
  • ►  2015 (12)
    • ►  December (1)
    • ►  November (1)
    • ►  October (1)
    • ►  September (1)
    • ►  June (3)
    • ►  May (1)
    • ►  March (1)
    • ►  February (1)
    • ►  January (2)
  • ►  2014 (21)
    • ►  November (1)
    • ►  September (2)
    • ►  July (2)
    • ►  June (4)
    • ►  May (1)
    • ►  April (2)
    • ►  March (3)
    • ►  February (4)
    • ►  January (2)
  • ►  2013 (33)
    • ►  December (1)
    • ►  October (4)
    • ►  September (6)
    • ►  August (6)
    • ►  July (3)
    • ►  June (4)
    • ►  May (1)
    • ►  April (2)
    • ►  March (2)
    • ►  February (2)
    • ►  January (2)
  • ►  2012 (32)
    • ►  December (2)
    • ►  November (5)
    • ►  October (5)
    • ►  September (1)
    • ►  August (13)
    • ►  July (2)
    • ►  June (2)
    • ►  March (1)
    • ►  January (1)
  • ►  2011 (14)
    • ►  November (1)
    • ►  October (1)
    • ►  September (2)
    • ►  August (1)
    • ►  June (1)
    • ►  April (1)
    • ►  March (3)
    • ►  February (1)
    • ►  January (3)
  • ►  2010 (17)
    • ►  November (1)
    • ►  October (1)
    • ►  September (2)
    • ►  August (1)
    • ►  July (1)
    • ►  May (1)
    • ►  April (3)
    • ►  March (3)
    • ►  February (3)
    • ►  January (1)
  • ►  2009 (29)
    • ►  December (1)
    • ►  November (3)
    • ►  October (2)
    • ►  August (1)
    • ►  July (4)
    • ►  June (3)
    • ►  May (1)
    • ►  April (2)
    • ►  March (4)
    • ►  February (4)
    • ►  January (4)
  • ►  2008 (26)
    • ►  December (3)
    • ►  November (2)
    • ►  October (3)
    • ►  September (2)
    • ►  July (2)
    • ►  June (3)
    • ►  May (1)
    • ►  April (1)
    • ►  March (4)
    • ►  February (1)
    • ►  January (4)
  • ►  2007 (60)
    • ►  December (6)
    • ►  November (14)
    • ►  October (4)
    • ►  September (8)
    • ►  August (6)
    • ►  July (6)
    • ►  June (9)
    • ►  May (7)

Post Categories

Data Protection data breach Hacking Home Security privacy Security Awareness PCI DSS cyber security roundup Payment Card Fraud malware Patching Encryption ransomware GDPR ID Theft Microsoft password security DPA hackers DDoS web application security nation-state adobe cyber Cyber Crime Social Media Wifi Security iot Cyberwar NCSC yahoo ICO Mobile Security Network Security talktalk Cloud Security Fraud RSAC Threat application security facebook ibm Risk Management Snowden wannacry OWASP Vulnerability Management Apple Big Data GCHQ Terrorism amazon brexit infographic nhs APT28 British Airways NSA Third Party Security cryptocurrencies APT10 Apache Cisco Compliance Huawei Policies Twitter dark web data retension petya CCTV Car Security Cobalt Magecart Windows XP appscan aws botnets enterprise security football incident management kaspersky marriott podcast BYOD CISO Cryptojacking Currys Cyber Essentials Dixons carphone Heartbleed InfoSec Intel Meltdown Mirai PewDiePie Physical Security RSA SHA-1 Spectre Uber anti-virus artificial intelligence bitcoin cyber insurance dixons equifax firewall lenovo management mcafee piracy starwood tor 5G AI AMD APT1 APT3 APT37 APT38 APT39 APTC23 CeX Citrix Conference Cyber Bullying Defcon F5 FASTR FBI FCA Gaming HCSEC HSBC Hacktivism ISO27001 Krack Kraken KwikFit MH370 NASA O365 PC World PoisonTap PokemonGo RAA Security Today Steganography TA505 Trickbot Typeform Vision Direct Windows 7 Windows Server 2018 adware awards becrypt biometrics blueborne book review bsides carbon black career christmas darkgate deltacharlie dropbox drown hidden cobra isf locky moneytaker outpost24 phishing sans scam small business snapchat spyware superfish supply-chain telegram wearables winzip

Most Popular Posts of All Time

  • Facebook Live Oyster Pearl Party Scams
    A little off-topic but recently I've been asked so many times about the Pearl Parties live broadcasts appearing all over Facebook status...
  • Securely Wiping your Personal Data from the iPhone
    It seems like every year Apple release a better 'must have' version of the amazing iPhone, sparking a rush to upgrade by the masses...
  • Reducing your Risk of Credit Card & Identity Fraud
    Here's my 15 tips to help reduce your personal risk of credit card fraud and identify fraud. Oh when I say identify fraud\theft, I mean ...
  • WinZip Encryption Password Security
    Post Updated - See  WinZip Encryption Password Security (2017) Recently I have received several Emails asking about WinZip encryption, and...
  • UK Shops with Minimum Spend OR Charges for Accepting Card Payments
    I really love those new Visa World Cup Football TV and the Barclaycard Contactless Card commercials (see below). These ads depic...
  • Latest on the Currys PC World Data Breach Impacting 10 Million Customers
    Following further investigations, Currys PC World today confirmed 10 million of their customer personal details may have been stolen by hack...
  • Why isn’t the GCHQ & NSA Privacy Invasion Socially Accepted?
    Post Snowden it is easy to jump on the media bandwagon, cry foul that GCHQ and the NSA have gone too far, forsaking our Privacy for Securit...

Cyber Security News Stream

Tweets by @SecurityToday

Other Security Blogs

  • Help Net Security - News
    Ryuk: What does the helpdesk tell us? - Cybercrime is the only criminal channel that provides a helpdesk. An amusing side note in the world of digital crime, and whilst considerable efforts hav...
    37 minutes ago
  • Schneier on Security
    Estonia's Volunteer Cyber Militia - Interesting -- although short and not very detailed -- article about Estonia's volunteer cyber-defense militia. Padar's militia of amateur IT workers, econ...
    18 hours ago
  • Krebs on Security
    A Deep Dive on the Recent Widespread DNS Hijacking Attacks - The U.S. government — along with a number of leading security companies — recently warned about a series of highly complex and widespread attacks that allo...
    1 day ago
  • SecurityWatch
    AWS Cloud: Proactive Security and Forensic Readiness – part 5 - Part 5: Incident Response in AWS In the event your organisation suffers a data breach or a security incident, it’s crucial to be prepared and conduct […]...
    1 day ago
  • Google Online Security Blog
    How we fought bad apps and malicious developers in 2018 - *Posted by Andrew Ahn, Product Manager, Google Play* *[Cross-posted from the Android Developers Blog]* Google Play is committed to providing a secure and ...
    6 days ago
  • Securosis Highlights
    The ELEVENTH Annual Disaster Recovery Breakfast: Is that you Caesar? - Posted under: General Things have been good in security. Really good. For a really long time. We can remember when there were a couple hundred people that...
    3 weeks ago
  • Network Security Blog
    Lucky Break - One of the things I do from time to time is throw out an open ended question on Twitter. Sometimes I’m making a point, sometimes I just want to amuse myse...
    5 months ago
  • Latest articles from SC Magazine UK
    400% increase in POS malware variants across US Thanksgiving weekend - Proofpoint researchers have written a blogpost detailing a 400 percent increase in Point-of-Sale malware variants across Thanksgiving weekend in the US.
    2 years ago
  • The Ashimmy Blog
    2016 Social Security Blogger Award Voting is Open Now! - OK everyone, the Social Security Blogger Award Voting is now open! You can vote for the winners at: https://www.surveymonkey.com/r/TMRP8Z5 A couple of thin...
    3 years ago
  • SpiderLabs Anterior
    TrustKeeper Scan Engine Update – February 4, 2015 - The latest update to the TrustKeeper scan engine that powers our Trustwave Vulnerability Management product (including both internal and external vulnerabi...
    4 years ago

Support Bloggers Rights

Bloggers' Rights at EFF

About Me

My photo
Dave Whitelegg
View my complete profile

ShareThis

Disclaimer

This is a personal website, all views or opinions represented in this blog are personal to Dave Whitelegg and guest bloggers that post, and do not represent the views or opinions of any business or organisation. All content provided on this blog is for informational purposes only. The owner of this blog makes no representations as to the accuracy or completeness of any information on this site or found by following any link on this site. The owner will not be liable for any errors or omissions in this information nor for the availability of this information.
All original content copyright David Whitelegg 2007-2019. You may not use any original content with. Awesome Inc. theme. Powered by Blogger.