IT Security Expert Blog

A UK view on Cybersecurity & Information Security, Everything Computer Security from the very basics to the advanced. A blog with a focus on the latest Cyber Security developments & issues in the UK, including Hacking, Privacy (GDPR), Data Breaches, security standards such as NIST, PCI DSS, Cyber Essentials & ISO27001, all will be simply explained.

Tuesday, 12 December 2017

Scan your app to find and fix OWASP Top 10 - 2017 vulnerabilities

Following the updated release of OWASP Top Ten (2017), I have updated my IBM developerWorks article "Scan your app to find and fix OWASP Top 10 - 2017 vulnerabilities", which was released on the IBM Developer Works website today
Posted by SecurityExpert at 23:30 No comments:
Email ThisBlogThis!Share to TwitterShare to FacebookShare to Pinterest
Labels: application security, ibm, OWASP
Newer Posts Older Posts Home
Subscribe to: Posts (Atom)
Click here for the IT Security Expert Website
Part of the

Cyber Security Expert Website
Tweets by @SecurityExpert Dave Whitelegg Media Info

Subscribe To

Posts
Atom
Posts
All Comments
Atom
All Comments

Search IT Security Expert Blog

Blog Archive

  • ►  2020 (11)
    • ►  March (4)
    • ►  February (3)
    • ►  January (4)
  • ►  2019 (76)
    • ►  December (9)
    • ►  November (17)
    • ►  October (7)
    • ►  September (2)
    • ►  August (1)
    • ►  July (3)
    • ►  June (5)
    • ►  May (9)
    • ►  April (3)
    • ►  March (4)
    • ►  February (6)
    • ►  January (10)
  • ►  2018 (27)
    • ►  December (3)
    • ►  November (3)
    • ►  October (2)
    • ►  September (4)
    • ►  August (1)
    • ►  July (2)
    • ►  June (1)
    • ►  May (2)
    • ►  April (1)
    • ►  March (2)
    • ►  February (3)
    • ►  January (3)
  • ▼  2017 (38)
    • ▼  December (1)
      • Scan your app to find and fix OWASP Top 10 - 2017 ...
    • ►  November (2)
    • ►  October (3)
    • ►  September (7)
    • ►  August (4)
    • ►  June (5)
    • ►  May (5)
    • ►  April (3)
    • ►  March (3)
    • ►  February (2)
    • ►  January (3)
  • ►  2016 (23)
    • ►  December (4)
    • ►  November (4)
    • ►  October (2)
    • ►  September (4)
    • ►  August (1)
    • ►  July (1)
    • ►  June (1)
    • ►  May (1)
    • ►  April (2)
    • ►  March (1)
    • ►  February (1)
    • ►  January (1)
  • ►  2015 (12)
    • ►  December (1)
    • ►  November (1)
    • ►  October (1)
    • ►  September (1)
    • ►  June (3)
    • ►  May (1)
    • ►  March (1)
    • ►  February (1)
    • ►  January (2)
  • ►  2014 (21)
    • ►  November (1)
    • ►  September (2)
    • ►  July (2)
    • ►  June (4)
    • ►  May (1)
    • ►  April (2)
    • ►  March (3)
    • ►  February (4)
    • ►  January (2)
  • ►  2013 (33)
    • ►  December (1)
    • ►  October (4)
    • ►  September (6)
    • ►  August (6)
    • ►  July (3)
    • ►  June (4)
    • ►  May (1)
    • ►  April (2)
    • ►  March (2)
    • ►  February (2)
    • ►  January (2)
  • ►  2012 (32)
    • ►  December (2)
    • ►  November (5)
    • ►  October (5)
    • ►  September (1)
    • ►  August (13)
    • ►  July (2)
    • ►  June (2)
    • ►  March (1)
    • ►  January (1)
  • ►  2011 (14)
    • ►  November (1)
    • ►  October (1)
    • ►  September (2)
    • ►  August (1)
    • ►  June (1)
    • ►  April (1)
    • ►  March (3)
    • ►  February (1)
    • ►  January (3)
  • ►  2010 (18)
    • ►  November (1)
    • ►  October (2)
    • ►  September (2)
    • ►  August (1)
    • ►  July (1)
    • ►  May (1)
    • ►  April (3)
    • ►  March (3)
    • ►  February (3)
    • ►  January (1)
  • ►  2009 (29)
    • ►  December (1)
    • ►  November (3)
    • ►  October (2)
    • ►  August (1)
    • ►  July (4)
    • ►  June (3)
    • ►  May (1)
    • ►  April (2)
    • ►  March (4)
    • ►  February (4)
    • ►  January (4)
  • ►  2008 (26)
    • ►  December (3)
    • ►  November (2)
    • ►  October (3)
    • ►  September (2)
    • ►  July (2)
    • ►  June (3)
    • ►  May (1)
    • ►  April (1)
    • ►  March (4)
    • ►  February (1)
    • ►  January (4)
  • ►  2007 (60)
    • ►  December (6)
    • ►  November (14)
    • ►  October (4)
    • ►  September (8)
    • ►  August (6)
    • ►  July (6)
    • ►  June (9)
    • ►  May (7)

Post Categories

data breach Data Protection Hacking Home Security cyber security roundup Patching privacy Security Awareness PCI DSS ransomware Microsoft GDPR Payment Card Fraud malware Encryption password security NCSC nation-state DPA ID Theft hackers DDoS iot web application security Cloud Security ICO Cyber Crime adobe Threat Social Media Wifi Security cyber Cyberwar Huawei facebook yahoo Network Security Mobile Security talktalk wannacry Fraud RSAC Risk Management application security ibm British Airways brexit phishing Cisco Snowden Vulnerability Management amazon infographic Big Data Intel OWASP Third Party Security cybercrime nhs APT10 Apple CISO GCHQ NSA Policies Terrorism cryptocurrencies cybersecurity dark web football APT28 Twitter aws equifax incident management marriott small business 5G Apache BEC Compliance Cyber Essentials Insider Threat Magecart data retension enterprise security kaspersky petya AI CCTV COVID-19 Car Security Cobalt Conference Coronavirus Hacktivism Meltdown SME Windows XP appscan bluekeep botnets ceo fraud email security firewall podcast BYOD Cryptojacking Currys Deep Secure Dixons carphone FBI FCA Heartbleed InfoSec Manchester City Mirai Mitre O365 PewDiePie Physical Security RSA SHA-1 Spectre T-Mobile Uber Windows 7 Windows Server 2018 anti-virus artificial intelligence becrypt bitcoin bsides credential stuffing cyber insurance dixons labour party lenovo management mcafee piracy ring ryuk scam sextortion starwood supply-chain tor vpn whatsapp 2018 A10 Networks AMD APT1 APT3 APT37 APT38 APT39 APT40 APTC23 ATP Aebi Schmidt Azure CESG CeX Citrix Coalfire Cyber Bullying Cyber Security Challenge UK DBIR DLP Decathlon Defcon Disney ECSC Enterprise Europe Network European Cyber Security Challenge F5 FASTR FFA FIFA Gaming HCSEC HSBC Hack IAM ISO27001 Identity Theft Intelligencia Krack Kraken KwikFit LOC Liverpool MFA MH370 Maersk Memty NASA NIST Netscout Nominet PC World PoisonTap PokemonGo RAA Redcar Regenix SOAR Security Today Sentinel Sodinokibi Steganography TA505 TGI Friday Trickbot UEFA Verizon Vision Direct Windows 10 access control adware att&ck awards beyer biometrics bitdefender bitsight black friday blockchain blueborne book review bt carbon black career christmas cloud security alliance contactless corvid cyber risk darkgate defender deltacharlie digital transformation dropbox drown e-crime congress education email eternalblue f-secure fedex flashpoint greene king hidden cobra ignite imperva isame isf legal sector locky misconfiguration moneytaker mumsnet netflix nordVPN notpetya outpost24 oyster paradox pitney bowes plundervolt rbs retail sans smart cities snapchat social engineering sonos spyware superfish telegram teletext holidays tfl threat intelligence threatQ timehop training travelex undervolting wearables winzip zavvi zero-day

Most Popular Posts of All Time

  • Facebook Live Oyster Pearl Party Scams
    A little off-topic but recently I've been asked so many times about the Pearl Parties live broadcasts appearing all over Facebook status...
  • Lush Credit Card Data Breach
    Before I go into my thoughts on the recent Lush website credit card data breach, I have some important advice to all Lush online customers. ...
  • Securely Wiping your Personal Data from the iPhone
    It seems like every year Apple release a better 'must have' version of the amazing iPhone, sparking a rush to upgrade by the masses...
  • Reducing your Risk of Credit Card & Identity Fraud
    Here's my 15 tips to help reduce your personal risk of credit card fraud and identify fraud. Oh when I say identify fraud\theft, I mean ...
  • WinZip Encryption Password Security
    Post Updated - See  WinZip Encryption Password Security (2017) Recently I have received several Emails asking about WinZip encryption, and...
  • UK Shops with Minimum Spend OR Charges for Accepting Card Payments
    I really love those new Visa World Cup Football TV and the Barclaycard Contactless Card commercials (see below). These ads depic...
  • Latest on the Currys PC World Data Breach Impacting 10 Million Customers
    Following further investigations, Currys PC World today confirmed 10 million of their customer personal details may have been stolen by hack...

Cyber Security News Stream

Tweets by @SecurityToday
4D Cyber Security Awards 2019

Other Security Blogs

  • Krebs on Security
    Annual Protest to ‘Fight Krebs’ Raises €150K+ - In 2018, KrebsOnSecurity unmasked the creators of Coinhive -- a now-defunct cryptocurrency mining service that was being massively abused by cybercriminals...
    2 hours ago
  • Help Net Security - News
    Remote work and web conferencing: Security and privacy considerations - As more and more people remain at home and work from home due to the COVID-19 pandemic, most of them have been forced to use one or many video and audio ...
    6 hours ago
  • Schneier on Security
    Privacy vs. Surveillance in the Age of COVID-19 - The trade-offs are changing: As countries around the world race to contain the pandemic, many are deploying digital surveillance tools as a means to exert ...
    8 hours ago
  • Microsoft Security
    Alternative ways for security professionals and IT to achieve modern security controls in today’s unique remote work scenarios - Increased remote work has many organizations rethinking network and security strategies. In this post we share guidance on how to manage security in this...
    4 days ago
  • SpiderLabs Blog from Trustwave
    Would You Exchange Your Security for a Gift Card? - We often talk about attackers targeting companies with social engineering attacks. These usually take the form of phishing attacks that attempt to trick th...
    4 days ago
  • AWS Security Blog
    Use AWS Lambda authorizers with a third-party identity provider to secure Amazon API Gateway REST APIs - Note: This post focuses on Amazon API Gateway REST APIs used with OAuth 2.0 and custom AWS Lambda authorizers. API Gateway also offers HTTP APIs, which pro...
    5 days ago
  • Google Online Security Blog
    Announcing our first GCP VRP Prize winner and updates to 2020 program - Posted by Harshvardan Sharma, Information Security Engineer, Google Last year, we announced a yearly Google Cloud Platform (GCP) VRP Prize to promote secu...
    2 weeks ago

About Me

SecurityExpert
View my complete profile

ShareThis

Disclaimer

This is a personal website, all views or opinions represented in this blog are personal to Dave Whitelegg and guest bloggers that post, and do not represent the views or opinions of any business or organisation. All content provided on this blog is for informational purposes only. The owner of this blog makes no representations as to the accuracy or completeness of any information on this site or found by following any link on this site. The owner will not be liable for any errors or omissions in this information nor for the availability of this information.
All original content copyright David Whitelegg 2007-2019. You may not use any original content with. Awesome Inc. theme. Powered by Blogger.