IT Security Expert Blog

A UK view on Cyber, Information & IT Security by Security Expert Dave Whitelegg. Everything Cyber Security from simple advice to contemplating advanced and future trends. The blog focuses on the latest developments & issues within the UK Cyber Security, including Hacking, Privacy (GDPR), Malware, Identity Theft and regulatory compliance like PCI DSS & ISO27001:2013, all will be explained in an easy to understand way.

Tuesday, 12 December 2017

Scan your app to find and fix OWASP Top 10 - 2017 vulnerabilities

Following the updated release of OWASP Top Ten (2017), I have updated my IBM developerWorks article "Scan your app to find and fix OWASP Top 10 - 2017 vulnerabilities", which was released on the IBM Developer Works website today
Posted by Dave Whitelegg at 23:30 No comments:
Email ThisBlogThis!Share to TwitterShare to FacebookShare to Pinterest
Labels: application security, ibm, OWASP
Newer Posts Older Posts Home
Subscribe to: Posts (Atom)
Click here for the IT Security Expert Website
Part of the

Cyber Security Expert Website
Tweets by @SecurityExpert Dave Whitelegg Media Info

Subscribe To

Posts
Atom
Posts
All Comments
Atom
All Comments

Search IT Security Expert Blog

Blog Archive

  • ►  2018 (15)
    • ►  August (1)
    • ►  July (2)
    • ►  June (1)
    • ►  May (2)
    • ►  April (1)
    • ►  March (2)
    • ►  February (3)
    • ►  January (3)
  • ▼  2017 (38)
    • ▼  December (1)
      • Scan your app to find and fix OWASP Top 10 - 2017 ...
    • ►  November (2)
    • ►  October (3)
    • ►  September (7)
    • ►  August (4)
    • ►  June (5)
    • ►  May (5)
    • ►  April (3)
    • ►  March (3)
    • ►  February (2)
    • ►  January (3)
  • ►  2016 (23)
    • ►  December (4)
    • ►  November (4)
    • ►  October (2)
    • ►  September (4)
    • ►  August (1)
    • ►  July (1)
    • ►  June (1)
    • ►  May (1)
    • ►  April (2)
    • ►  March (1)
    • ►  February (1)
    • ►  January (1)
  • ►  2015 (12)
    • ►  December (1)
    • ►  November (1)
    • ►  October (1)
    • ►  September (1)
    • ►  June (3)
    • ►  May (1)
    • ►  March (1)
    • ►  February (1)
    • ►  January (2)
  • ►  2014 (21)
    • ►  November (1)
    • ►  September (2)
    • ►  July (2)
    • ►  June (4)
    • ►  May (1)
    • ►  April (2)
    • ►  March (3)
    • ►  February (4)
    • ►  January (2)
  • ►  2013 (33)
    • ►  December (1)
    • ►  October (4)
    • ►  September (6)
    • ►  August (6)
    • ►  July (3)
    • ►  June (4)
    • ►  May (1)
    • ►  April (2)
    • ►  March (2)
    • ►  February (2)
    • ►  January (2)
  • ►  2012 (32)
    • ►  December (2)
    • ►  November (5)
    • ►  October (5)
    • ►  September (1)
    • ►  August (13)
    • ►  July (2)
    • ►  June (2)
    • ►  March (1)
    • ►  January (1)
  • ►  2011 (14)
    • ►  November (1)
    • ►  October (1)
    • ►  September (2)
    • ►  August (1)
    • ►  June (1)
    • ►  April (1)
    • ►  March (3)
    • ►  February (1)
    • ►  January (3)
  • ►  2010 (17)
    • ►  November (1)
    • ►  October (1)
    • ►  September (2)
    • ►  August (1)
    • ►  July (1)
    • ►  May (1)
    • ►  April (3)
    • ►  March (3)
    • ►  February (3)
    • ►  January (1)
  • ►  2009 (29)
    • ►  December (1)
    • ►  November (3)
    • ►  October (2)
    • ►  August (1)
    • ►  July (4)
    • ►  June (3)
    • ►  May (1)
    • ►  April (2)
    • ►  March (4)
    • ►  February (4)
    • ►  January (4)
  • ►  2008 (26)
    • ►  December (3)
    • ►  November (2)
    • ►  October (3)
    • ►  September (2)
    • ►  July (2)
    • ►  June (3)
    • ►  May (1)
    • ►  April (1)
    • ►  March (4)
    • ►  February (1)
    • ►  January (4)
  • ►  2007 (60)
    • ►  December (6)
    • ►  November (14)
    • ►  October (4)
    • ►  September (8)
    • ►  August (6)
    • ►  July (6)
    • ►  June (9)
    • ►  May (7)

Post Categories

Data Protection data breach Home Security Hacking privacy Security Awareness PCI DSS cyber security roundup malware Payment Card Fraud Patching Encryption ID Theft ransomware DPA password security Microsoft web application security GDPR hackers DDoS Social Media Wifi Security Cyberwar cyber Cyber Crime nation-state yahoo ICO Mobile Security Network Security adobe talktalk Fraud ibm iot Cloud Security NCSC RSAC Snowden Threat wannacry OWASP Risk Management Vulnerability Management application security Big Data GCHQ Terrorism infographic nhs NSA Third Party Security facebook Compliance Twitter brexit cryptocurrencies dark web petya APT28 Apache CCTV Policies Windows XP appscan botnets enterprise security football incident management podcast APT10 Apple BYOD Car Security Cisco Cobalt Cryptojacking Heartbleed Intel Meltdown Physical Security SHA-1 Spectre amazon anti-virus aws bitcoin cyber insurance data retension equifax firewall kaspersky lenovo tor AMD APT3 APT37 APTC23 CeX Currys Cyber Bullying Cyber Essentials Dixons carphone FASTR Gaming Hacktivism ISO27001 Krack MH370 Mirai O365 PC World PoisonTap PokemonGo RAA Security Today Typeform Uber adware awards blueborne book review career deltacharlie dixons dropbox drown hidden cobra locky moneytaker outpost24 piracy scam snapchat spyware superfish telegram winzip

Most Popular Posts of All Time

  • Facebook Live Oyster Pearl Party Scams
    A little off-topic but recently I've been asked so many times about the Pearl Parties live broadcasts appearing all over Facebook status...
  • Securely Wiping your Personal Data from the iPhone
    It seems like every year Apple release a better 'must have' version of the amazing iPhone, sparking a rush to upgrade by the masses...
  • Reducing your Risk of Credit Card & Identity Fraud
    Here's my 15 tips to help reduce your personal risk of credit card fraud and identify fraud. Oh when I say identify fraud\theft, I mean ...
  • WinZip Encryption Password Security
    Post Updated - See  WinZip Encryption Password Security (2017) Recently I have received several Emails asking about WinZip encryption, and...
  • UK Shops with Minimum Spend OR Charges for Accepting Card Payments
    I really love those new Visa World Cup Football TV and the Barclaycard Contactless Card commercials (see below). These ads depic...
  • Why isn’t the GCHQ & NSA Privacy Invasion Socially Accepted?
    Post Snowden it is easy to jump on the media bandwagon, cry foul that GCHQ and the NSA have gone too far, forsaking our Privacy for Securit...
  • Web Application Security: AppScan Tutorial
    Recently I was approached to write a security tutorial for the IBM developerWorks website, specifically about IBM Rational AppScan. AppScan ...

Cyber Security News Stream

Tweets by @SecurityToday

Other Security Blogs

  • Help Net Security - News
    2.6 billion records exposed in 2,300 disclosed breaches so far this year - Risk Based Security released its Mid-Year 2018 Data Breach QuickView report, showing there have been 2,308 publicly disclosed data compromise events thro...
    25 minutes ago
  • Google Online Security Blog
    Expanding our Vulnerability Reward Program to combat platform abuse - Posted by Eric Brown and Marc Henson, Trust & Safety Since 2010, Google’s Vulnerability Reward Programs have awarded more than $12 million dollars to resea...
    14 hours ago
  • Krebs on Security
    Patch Tuesday, August 2018 Edition - Adobe and Microsoft each released security updates for their software on Tuesday. Adobe plugged five security holes in its Flash Player browser plugin. Mic...
    15 hours ago
  • Schneier on Security
    Hacking Police Bodycams - Suprising no one, the security of police bodycams is terrible. Mitchell even realized that because he can remotely access device storage on models like the...
    19 hours ago
  • SecurityWatch
    I read the news today, oh boy: social sharing and the dangers of false information - We’ve all done it: shared a post on social media in the belief that it’s spreading an important message or helping someone in need. But how […] The post ...
    3 weeks ago
  • Securosis Highlights
    Firestarter: It’s a GDPR Thing - Posted under: Firestarter Mike and Rich discuss the ugly reality that GDPR really is a thing. Not that privacy or even GDPR are bad (we’re all in favor), ...
    5 weeks ago
  • Latest articles from SC Magazine UK
    400% increase in POS malware variants across US Thanksgiving weekend - Proofpoint researchers have written a blogpost detailing a 400 percent increase in Point-of-Sale malware variants across Thanksgiving weekend in the US.
    1 year ago
  • The Ashimmy Blog
    2016 Social Security Blogger Award Voting is Open Now! - OK everyone, the Social Security Blogger Award Voting is now open! You can vote for the winners at: https://www.surveymonkey.com/r/TMRP8Z5 A couple of thin...
    2 years ago
  • Network Security Blog
    NSP Microcast – G Data Summit – Natalya Kaspersky - It’s taken me a lot longer than it should have, but I finally got my interview with Natalya Kaspersky, CEO of InfoWatch and former CEO of Kaspersky Labs fr...
    2 years ago
  • SpiderLabs Anterior
    TrustKeeper Scan Engine Update – February 4, 2015 - The latest update to the TrustKeeper scan engine that powers our Trustwave Vulnerability Management product (including both internal and external vulnerabi...
    3 years ago

Support Bloggers Rights

Bloggers' Rights at EFF

About Me

My photo
Dave Whitelegg
View my complete profile

ShareThis

Disclaimer

This is a personal website, all views or opinions represented in this blog are personal to Dave Whitelegg and guest bloggers that post, and do not represent the views or opinions of any business or organisation. All content provided on this blog is for informational purposes only. The owner of this blog makes no representations as to the accuracy or completeness of any information on this site or found by following any link on this site. The owner will not be liable for any errors or omissions in this information nor for the availability of this information.
All original content copyright David Whitelegg 2007-2016. You may not use any original content with. Awesome Inc. theme. Powered by Blogger.