IT Security Expert Blog

A UK view on Cybersecurity & Information Security, Everything Computer Security from the very basics to the advanced. A blog with a focus on the latest Cyber Security developments & issues in the UK, including Hacking, Privacy (GDPR), Data Breaches, security standards such as NIST, PCI DSS, Cyber Essentials & ISO27001, all will be simply explained.

Tuesday, 12 December 2017

Scan your app to find and fix OWASP Top 10 - 2017 vulnerabilities

Following the updated release of OWASP Top Ten (2017), I have updated my IBM developerWorks article "Scan your app to find and fix OWASP Top 10 - 2017 vulnerabilities", which was released on the IBM Developer Works website today
Posted by SecurityExpert at 23:30 No comments:
Email ThisBlogThis!Share to TwitterShare to FacebookShare to Pinterest
Labels: application security, ibm, OWASP
Newer Posts Older Posts Home
Subscribe to: Posts (Atom)
Click here for the IT Security Expert Website
Part of the

Cyber Security Expert Website
Tweets by @SecurityExpert Dave Whitelegg Media Info

Subscribe To

Posts
Atom
Posts
All Comments
Atom
All Comments

Search IT Security Expert Blog

Blog Archive

  • ►  2020 (21)
    • ►  July (1)
    • ►  June (2)
    • ►  May (2)
    • ►  April (4)
    • ►  March (5)
    • ►  February (3)
    • ►  January (4)
  • ►  2019 (76)
    • ►  December (9)
    • ►  November (17)
    • ►  October (7)
    • ►  September (2)
    • ►  August (1)
    • ►  July (3)
    • ►  June (5)
    • ►  May (9)
    • ►  April (3)
    • ►  March (4)
    • ►  February (6)
    • ►  January (10)
  • ►  2018 (27)
    • ►  December (3)
    • ►  November (3)
    • ►  October (2)
    • ►  September (4)
    • ►  August (1)
    • ►  July (2)
    • ►  June (1)
    • ►  May (2)
    • ►  April (1)
    • ►  March (2)
    • ►  February (3)
    • ►  January (3)
  • ▼  2017 (38)
    • ▼  December (1)
      • Scan your app to find and fix OWASP Top 10 - 2017 ...
    • ►  November (2)
    • ►  October (3)
    • ►  September (7)
    • ►  August (4)
    • ►  June (5)
    • ►  May (5)
    • ►  April (3)
    • ►  March (3)
    • ►  February (2)
    • ►  January (3)
  • ►  2016 (23)
    • ►  December (4)
    • ►  November (4)
    • ►  October (2)
    • ►  September (4)
    • ►  August (1)
    • ►  July (1)
    • ►  June (1)
    • ►  May (1)
    • ►  April (2)
    • ►  March (1)
    • ►  February (1)
    • ►  January (1)
  • ►  2015 (12)
    • ►  December (1)
    • ►  November (1)
    • ►  October (1)
    • ►  September (1)
    • ►  June (3)
    • ►  May (1)
    • ►  March (1)
    • ►  February (1)
    • ►  January (2)
  • ►  2014 (21)
    • ►  November (1)
    • ►  September (2)
    • ►  July (2)
    • ►  June (4)
    • ►  May (1)
    • ►  April (2)
    • ►  March (3)
    • ►  February (4)
    • ►  January (2)
  • ►  2013 (33)
    • ►  December (1)
    • ►  October (4)
    • ►  September (6)
    • ►  August (6)
    • ►  July (3)
    • ►  June (4)
    • ►  May (1)
    • ►  April (2)
    • ►  March (2)
    • ►  February (2)
    • ►  January (2)
  • ►  2012 (32)
    • ►  December (2)
    • ►  November (5)
    • ►  October (5)
    • ►  September (1)
    • ►  August (13)
    • ►  July (2)
    • ►  June (2)
    • ►  March (1)
    • ►  January (1)
  • ►  2011 (14)
    • ►  November (1)
    • ►  October (1)
    • ►  September (2)
    • ►  August (1)
    • ►  June (1)
    • ►  April (1)
    • ►  March (3)
    • ►  February (1)
    • ►  January (3)
  • ►  2010 (18)
    • ►  November (1)
    • ►  October (2)
    • ►  September (2)
    • ►  August (1)
    • ►  July (1)
    • ►  May (1)
    • ►  April (3)
    • ►  March (3)
    • ►  February (3)
    • ►  January (1)
  • ►  2009 (29)
    • ►  December (1)
    • ►  November (3)
    • ►  October (2)
    • ►  August (1)
    • ►  July (4)
    • ►  June (3)
    • ►  May (1)
    • ►  April (2)
    • ►  March (4)
    • ►  February (4)
    • ►  January (4)
  • ►  2008 (26)
    • ►  December (3)
    • ►  November (2)
    • ►  October (3)
    • ►  September (2)
    • ►  July (2)
    • ►  June (3)
    • ►  May (1)
    • ►  April (1)
    • ►  March (4)
    • ►  February (1)
    • ►  January (4)
  • ►  2007 (60)
    • ►  December (6)
    • ►  November (14)
    • ►  October (4)
    • ►  September (8)
    • ►  August (6)
    • ►  July (6)
    • ►  June (9)
    • ►  May (7)

Post Categories

data breach Data Protection cyber security roundup Home Security Patching Hacking privacy ransomware Microsoft Security Awareness PCI DSS GDPR Payment Card Fraud malware password security Encryption NCSC nation-state hackers DDoS DPA ID Theft iot web application security Cloud Security ICO adobe Cyber Crime Threat Huawei Social Media Wifi Security cyber Cyberwar facebook yahoo Mobile Security Network Security talktalk wannacry phishing Cisco application security Fraud RSAC Risk Management ibm British Airways amazon brexit Apple Snowden Vulnerability Management infographic Big Data Intel OWASP Third Party Security cybercrime cybersecurity nhs APT10 CISO Coronavirus GCHQ NSA Policies Terrorism cryptocurrencies dark web football marriott 5G APT28 COVID-19 Twitter aws equifax incident management podcast small business AI Apache BEC Compliance Cyber Essentials Insider Threat MFA Magecart data retension enterprise security kaspersky petya scam CCTV Car Security Cobalt Conference Cryptojacking Hacktivism Meltdown SME Windows XP anti-virus appscan bluekeep botnets ceo fraud email security firewall ring vpn zoom BYOD Currys DBIR Deep Secure Dixons carphone FBI FCA Heartbleed InfoSec Manchester City Maze Mirai Mitre O365 PewDiePie Physical Security RSA SHA-1 Spectre T-Mobile Uber VMware Windows 7 Windows Server 2018 artificial intelligence becrypt bitcoin bsides career credential stuffing cyber insurance dixons labour party lenovo logmeonce management mcafee misconfiguration piracy pitney bowes ryuk sextortion starwood supply-chain tor travelex whatsapp 2018 A10 Networks AMD APT1 APT3 APT37 APT38 APT39 APT40 APTC23 ATP Aebi Schmidt Azure CESG CeX Citrix Coalfire Cognizant Cyber Bullying Cyber Security Challenge UK DLP Decathlon Defcon Disney ECSC Emotet Enterprise Europe Network European Cyber Security Challenge F5 FASTR FFA FIFA Gaming Google HCSEC HSBC Hack IAM ISO27001 Identity Theft Intelligencia Krack Kraken KwikFit LOC Liverpool MH370 Maersk Memty NASA NIST Netscout Nintendo Nominet PC World PoisonTap PokemonGo RAA Redcar Regenix Revil SOAR Security Today Sentinel Snake Sodinokibi Sophos Steganography TA505 TGI Friday Trickbot UEFA Verizon Vision Direct Windows 10 YesWeHack access control adware att&ck awards beyer biometrics bitdefender bitsight black friday blockchain blueborne book review bt bugbounty carbon black china christmas cloud security alliance contactless corvid cyber risk darkgate defender deltacharlie digital transformation dropbox drown e-crime congress easyjet education email eternalblue f-secure fedex flashpoint greene king hidden cobra ignite imperva isame isf legal sector locky moneytaker mumsnet netflix nordVPN notpetya outpost24 oyster paradox plundervolt rbs retail sans smart cities snapchat social engineering sonos spyware superfish telegram teletext holidays tfl threat intelligence threatQ timehop training undervolting wearables winzip zavvi zero-day

Most Popular Posts of All Time

  • Facebook Live Oyster Pearl Party Scams
    A little off-topic but recently I've been asked so many times about the Pearl Parties live broadcasts appearing all over Facebook status...
  • Lush Credit Card Data Breach
    Before I go into my thoughts on the recent Lush website credit card data breach, I have some important advice to all Lush online customers. ...
  • Securely Wiping your Personal Data from the iPhone
    It seems like every year Apple release a better 'must have' version of the amazing iPhone, sparking a rush to upgrade by the masses...
  • Reducing your Risk of Credit Card & Identity Fraud
    Here's my 15 tips to help reduce your personal risk of credit card fraud and identify fraud. Oh when I say identify fraud\theft, I mean ...
  • WinZip Encryption Password Security
    Post Updated - See  WinZip Encryption Password Security (2017) Recently I have received several Emails asking about WinZip encryption, and...
  • UK Shops with Minimum Spend OR Charges for Accepting Card Payments
    I really love those new Visa World Cup Football TV and the Barclaycard Contactless Card commercials (see below). These ads depic...
  • Latest on the Currys PC World Data Breach Impacting 10 Million Customers
    Following further investigations, Currys PC World today confirmed 10 million of their customer personal details may have been stolen by hack...

Cyber Security News Stream

Tweets by @SecurityToday
4D Cyber Security Awards 2019

Other Security Blogs

  • Help Net Security - News
    Researchers discover how to pinpoint the location of a malicious drone operator - Researchers at Ben-Gurion University of the Negev (BGU) have determined how to pinpoint the location of a drone operator who may be operating maliciously...
    13 minutes ago
  • AWS Security Blog
    How to use G Suite as an external identity provider for AWS SSO - Do you want to control access to your Amazon Web Services (AWS) accounts with G Suite? In this post, we show you how to set up G Suite as an external ident...
    8 hours ago
  • Schneier on Security
    ThiefQuest Ransomware for the Mac - There's a new ransomware for the Mac called ThiefQuest or EvilQuest. It's hard to get infected: For your Mac to become infected, you would need to torrent ...
    16 hours ago
  • Krebs on Security
    E-Verify’s “SSN Lock” is Nothing of the Sort - One of the most-read advice columns on this site is a 2018 piece called "Plant Your Flag, Mark Your Territory," which tried to impress upon readers the imp...
    2 days ago
  • SpiderLabs Blog from Trustwave
    Hackers Leverage Cloud Platforms to Spread Phishing Under the Radar - New detection for Trustwave SWG (which is also part of Blended Threat Module for select Trustwave SEG customers). The detection was specifically crafted to...
    4 days ago
  • Microsoft Security
    The world is your authentication and identity oyster - For decades we have been taught that passwords are some level of security that can be implemented to protect websites. We need to dispel this unfortunate...
    4 days ago
  • Google Online Security Blog
    System hardening in Android 11 - Posted by Platform Hardening Team In Android 11 we continue to increase the security of the Android platform. We have moved to safer default settings, mig...
    6 days ago

About Me

SecurityExpert
View my complete profile

ShareThis

Disclaimer

This is a personal website, all views or opinions represented in this blog are personal to Dave Whitelegg and guest bloggers that post, and do not represent the views or opinions of any business or organisation. All content provided on this blog is for informational purposes only. The owner of this blog makes no representations as to the accuracy or completeness of any information on this site or found by following any link on this site. The owner will not be liable for any errors or omissions in this information nor for the availability of this information.
All original content copyright David Whitelegg 2007-2019. You may not use any original content with. Awesome Inc. theme. Powered by Blogger.