IT Security Expert Blog

A UK view on Cyber (IT Security) & Information Security. Covering everything Computer Security from the basics to the advanced. A blog with a focus on the latest Cyber Security developments & issues in the UK, including Hacking, Privacy (GDPR), Data Breaches, and compliance like PCI DSS &amp, Cyber Essentials & ISO27001, all will be explained simply.

Tuesday, 12 December 2017

Scan your app to find and fix OWASP Top 10 - 2017 vulnerabilities

Following the updated release of OWASP Top Ten (2017), I have updated my IBM developerWorks article "Scan your app to find and fix OWASP Top 10 - 2017 vulnerabilities", which was released on the IBM Developer Works website today
Posted by SecurityExpert at 23:30 No comments:
Email ThisBlogThis!Share to TwitterShare to FacebookShare to Pinterest
Labels: application security, ibm, OWASP
Newer Posts Older Posts Home
Subscribe to: Posts (Atom)
Click here for the IT Security Expert Website
Part of the

Cyber Security Expert Website
Tweets by @SecurityExpert Dave Whitelegg Media Info

Subscribe To

Posts
Atom
Posts
All Comments
Atom
All Comments

Search IT Security Expert Blog

Blog Archive

  • ►  2019 (48)
    • ►  October (5)
    • ►  September (2)
    • ►  August (1)
    • ►  July (3)
    • ►  June (5)
    • ►  May (9)
    • ►  April (3)
    • ►  March (4)
    • ►  February (6)
    • ►  January (10)
  • ►  2018 (27)
    • ►  December (3)
    • ►  November (3)
    • ►  October (2)
    • ►  September (4)
    • ►  August (1)
    • ►  July (2)
    • ►  June (1)
    • ►  May (2)
    • ►  April (1)
    • ►  March (2)
    • ►  February (3)
    • ►  January (3)
  • ▼  2017 (38)
    • ▼  December (1)
      • Scan your app to find and fix OWASP Top 10 - 2017 ...
    • ►  November (2)
    • ►  October (3)
    • ►  September (7)
    • ►  August (4)
    • ►  June (5)
    • ►  May (5)
    • ►  April (3)
    • ►  March (3)
    • ►  February (2)
    • ►  January (3)
  • ►  2016 (23)
    • ►  December (4)
    • ►  November (4)
    • ►  October (2)
    • ►  September (4)
    • ►  August (1)
    • ►  July (1)
    • ►  June (1)
    • ►  May (1)
    • ►  April (2)
    • ►  March (1)
    • ►  February (1)
    • ►  January (1)
  • ►  2015 (12)
    • ►  December (1)
    • ►  November (1)
    • ►  October (1)
    • ►  September (1)
    • ►  June (3)
    • ►  May (1)
    • ►  March (1)
    • ►  February (1)
    • ►  January (2)
  • ►  2014 (21)
    • ►  November (1)
    • ►  September (2)
    • ►  July (2)
    • ►  June (4)
    • ►  May (1)
    • ►  April (2)
    • ►  March (3)
    • ►  February (4)
    • ►  January (2)
  • ►  2013 (33)
    • ►  December (1)
    • ►  October (4)
    • ►  September (6)
    • ►  August (6)
    • ►  July (3)
    • ►  June (4)
    • ►  May (1)
    • ►  April (2)
    • ►  March (2)
    • ►  February (2)
    • ►  January (2)
  • ►  2012 (32)
    • ►  December (2)
    • ►  November (5)
    • ►  October (5)
    • ►  September (1)
    • ►  August (13)
    • ►  July (2)
    • ►  June (2)
    • ►  March (1)
    • ►  January (1)
  • ►  2011 (14)
    • ►  November (1)
    • ►  October (1)
    • ►  September (2)
    • ►  August (1)
    • ►  June (1)
    • ►  April (1)
    • ►  March (3)
    • ►  February (1)
    • ►  January (3)
  • ►  2010 (18)
    • ►  November (1)
    • ►  October (2)
    • ►  September (2)
    • ►  August (1)
    • ►  July (1)
    • ►  May (1)
    • ►  April (3)
    • ►  March (3)
    • ►  February (3)
    • ►  January (1)
  • ►  2009 (29)
    • ►  December (1)
    • ►  November (3)
    • ►  October (2)
    • ►  August (1)
    • ►  July (4)
    • ►  June (3)
    • ►  May (1)
    • ►  April (2)
    • ►  March (4)
    • ►  February (4)
    • ►  January (4)
  • ►  2008 (26)
    • ►  December (3)
    • ►  November (2)
    • ►  October (3)
    • ►  September (2)
    • ►  July (2)
    • ►  June (3)
    • ►  May (1)
    • ►  April (1)
    • ►  March (4)
    • ►  February (1)
    • ►  January (4)
  • ►  2007 (60)
    • ►  December (6)
    • ►  November (14)
    • ►  October (4)
    • ►  September (8)
    • ►  August (6)
    • ►  July (6)
    • ►  June (9)
    • ►  May (7)

Post Categories

Data Protection data breach Hacking Home Security cyber security roundup privacy Security Awareness PCI DSS Patching Microsoft malware Payment Card Fraud ransomware GDPR Encryption ID Theft password security DPA hackers DDoS NCSC nation-state web application security ICO adobe Cyber Crime Wifi Security cyber Cloud Security Social Media Threat iot yahoo Cyberwar facebook Huawei Network Security Mobile Security talktalk wannacry Fraud RSAC Risk Management application security ibm British Airways Snowden Big Data Cisco OWASP Vulnerability Management brexit infographic nhs APT10 Apple GCHQ Policies Terrorism Third Party Security amazon cryptocurrencies APT28 CISO Intel NSA Twitter dark web equifax marriott phishing Apache Compliance aws data retension football incident management kaspersky petya small business CCTV Car Security Cobalt Conference Cyber Essentials Hacktivism Magecart Meltdown Windows XP appscan bluekeep botnets enterprise security podcast BYOD Cryptojacking Currys Deep Secure Dixons carphone FCA Heartbleed InfoSec Insider Threat Mirai PewDiePie Physical Security RSA SHA-1 SME Spectre Uber Windows 7 Windows Server 2018 anti-virus artificial intelligence bitcoin bsides credential stuffing cyber insurance dixons firewall lenovo management mcafee piracy starwood tor whatsapp 2018 5G A10 Networks AI AMD APT1 APT3 APT37 APT38 APT39 APTC23 Aebi Schmidt BEC CeX Citrix Cyber Bullying Cyber Security Challenge UK DBIR DLP Defcon ECSC European Cyber Security Challenge F5 FASTR FBI Gaming HCSEC HSBC ISO27001 Intelligencia Krack Kraken KwikFit MH370 Mitre NASA NIST Netscout Nominet O365 PC World PoisonTap PokemonGo RAA Security Today Steganography T-Mobile TA505 TGI Friday Trickbot Verizon Vision Direct Windows 10 access control adware att&ck awards becrypt beyer biometrics blueborne book review bt carbon black career ceo fraud christmas cloud security alliance corvid darkgate deltacharlie digital transformation dropbox drown e-crime congress education eternalblue flashpoint greene king hidden cobra imperva isame isf legal sector locky moneytaker mumsnet outpost24 oyster rbs sans scam snapchat social engineering spyware superfish supply-chain telegram teletext holidays tfl threatQ timehop training wearables winzip zavvi zero-day

Most Popular Posts of All Time

  • Facebook Live Oyster Pearl Party Scams
    A little off-topic but recently I've been asked so many times about the Pearl Parties live broadcasts appearing all over Facebook status...
  • Securely Wiping your Personal Data from the iPhone
    It seems like every year Apple release a better 'must have' version of the amazing iPhone, sparking a rush to upgrade by the masses...
  • Reducing your Risk of Credit Card & Identity Fraud
    Here's my 15 tips to help reduce your personal risk of credit card fraud and identify fraud. Oh when I say identify fraud\theft, I mean ...
  • WinZip Encryption Password Security
    Post Updated - See  WinZip Encryption Password Security (2017) Recently I have received several Emails asking about WinZip encryption, and...
  • Lush Credit Card Data Breach
    Before I go into my thoughts on the recent Lush website credit card data breach, I have some important advice to all Lush online customers. ...
  • UK Shops with Minimum Spend OR Charges for Accepting Card Payments
    I really love those new Visa World Cup Football TV and the Barclaycard Contactless Card commercials (see below). These ads depic...
  • Latest on the Currys PC World Data Breach Impacting 10 Million Customers
    Following further investigations, Currys PC World today confirmed 10 million of their customer personal details may have been stolen by hack...

Cyber Security News Stream

Tweets by @SecurityToday
4D Cyber Security Awards 2019

Other Security Blogs

  • Schneier on Security
    Details of the Olympic Destroyer APT - Interesting details on Olympic Destroyer, the nation-state cyberattack against the 2018 Winter Olympic Games in South Korea. Wired's Andy Greenberg present...
    11 hours ago
  • Help Net Security - News
    Avast breached by hackers who wanted to compromise CCleaner again - Czech security software maker Avast has suffered another malicious intrusion into their networks, but the attackers didn’t accomplish what they apparentl...
    12 hours ago
  • Google Online Security Blog
    Improving Site Isolation for Stronger Browser Security - Posted by Charlie Reis, Site Isolator The Chrome Security team values having multiple lines of defense. Web browsers are complex, and malicious web pages ...
    4 days ago
  • Krebs on Security
    When Card Shops Play Dirty, Consumers Win - Cybercrime forums have been abuzz this week over news that BriansClub -- one of the underground's largest shops for stolen credit and debit cards -- had be...
    4 days ago
  • Securosis Highlights
    Enterprise DevSecOps: Security’s Role In DevOps - Posted under: Heavy Research As mentioned in an earlier section, DevOps is not all about tools and technology, but much of its success is how people work ...
    5 days ago
  • SecurityWatch
    BH Consulting in the media: data protection’s role in customer service and trust - Some organisations and companies are “hiding behind” their data protection and privacy obligations, and it’s leading to poor customer service. In doing s...
    1 month ago
  • Network Security Blog
    Lucky Break - One of the things I do from time to time is throw out an open ended question on Twitter. Sometimes I’m making a point, sometimes I just want to amuse myse...
    1 year ago
  • Latest articles from SC Magazine UK
    400% increase in POS malware variants across US Thanksgiving weekend - Proofpoint researchers have written a blogpost detailing a 400 percent increase in Point-of-Sale malware variants across Thanksgiving weekend in the US.
    2 years ago
  • The Ashimmy Blog
    2016 Social Security Blogger Award Voting is Open Now! - OK everyone, the Social Security Blogger Award Voting is now open! You can vote for the winners at: https://www.surveymonkey.com/r/TMRP8Z5 A couple of thin...
    3 years ago
  • SpiderLabs Anterior
    TrustKeeper Scan Engine Update – February 4, 2015 - The latest update to the TrustKeeper scan engine that powers our Trustwave Vulnerability Management product (including both internal and external vulnerabi...
    4 years ago

Support Bloggers Rights

Bloggers' Rights at EFF

About Me

SecurityExpert
View my complete profile

ShareThis

Disclaimer

This is a personal website, all views or opinions represented in this blog are personal to Dave Whitelegg and guest bloggers that post, and do not represent the views or opinions of any business or organisation. All content provided on this blog is for informational purposes only. The owner of this blog makes no representations as to the accuracy or completeness of any information on this site or found by following any link on this site. The owner will not be liable for any errors or omissions in this information nor for the availability of this information.
All original content copyright David Whitelegg 2007-2019. You may not use any original content with. Awesome Inc. theme. Powered by Blogger.