IT Security Expert Blog

A UK view on Cybersecurity & Information Security, Everything Computer Security from the very basics to the advanced. A blog with a focus on the latest Cyber Security developments & issues in the UK, including Hacking, Privacy (GDPR), Data Breaches, security standards such as NIST, PCI DSS, Cyber Essentials & ISO27001, all will be simply explained.

Tuesday, 12 December 2017

Scan your app to find and fix OWASP Top 10 - 2017 vulnerabilities

Following the updated release of OWASP Top Ten (2017), I have updated my IBM developerWorks article "Scan your app to find and fix OWASP Top 10 - 2017 vulnerabilities", which was released on the IBM Developer Works website today
Posted by SecurityExpert at 23:30 No comments:
Email ThisBlogThis!Share to TwitterShare to FacebookShare to Pinterest
Labels: application security, ibm, OWASP
Newer Posts Older Posts Home
View mobile version
Subscribe to: Posts (Atom)
Click here for the IT Security Expert Website
Part of the

Cyber Security Expert Website
Tweets by @SecurityExpert Dave Whitelegg Media Info

Subscribe To

Posts
Atom
Posts
All Comments
Atom
All Comments

Search IT Security Expert Blog

Blog Archive

  • ►  2020 (28)
    • ►  August (2)
    • ►  July (6)
    • ►  June (2)
    • ►  May (2)
    • ►  April (4)
    • ►  March (5)
    • ►  February (3)
    • ►  January (4)
  • ►  2019 (76)
    • ►  December (9)
    • ►  November (17)
    • ►  October (7)
    • ►  September (2)
    • ►  August (1)
    • ►  July (3)
    • ►  June (5)
    • ►  May (9)
    • ►  April (3)
    • ►  March (4)
    • ►  February (6)
    • ►  January (10)
  • ►  2018 (27)
    • ►  December (3)
    • ►  November (3)
    • ►  October (2)
    • ►  September (4)
    • ►  August (1)
    • ►  July (2)
    • ►  June (1)
    • ►  May (2)
    • ►  April (1)
    • ►  March (2)
    • ►  February (3)
    • ►  January (3)
  • ▼  2017 (38)
    • ▼  December (1)
      • Scan your app to find and fix OWASP Top 10 - 2017 ...
    • ►  November (2)
    • ►  October (3)
    • ►  September (7)
    • ►  August (4)
    • ►  June (5)
    • ►  May (5)
    • ►  April (3)
    • ►  March (3)
    • ►  February (2)
    • ►  January (3)
  • ►  2016 (23)
    • ►  December (4)
    • ►  November (4)
    • ►  October (2)
    • ►  September (4)
    • ►  August (1)
    • ►  July (1)
    • ►  June (1)
    • ►  May (1)
    • ►  April (2)
    • ►  March (1)
    • ►  February (1)
    • ►  January (1)
  • ►  2015 (12)
    • ►  December (1)
    • ►  November (1)
    • ►  October (1)
    • ►  September (1)
    • ►  June (3)
    • ►  May (1)
    • ►  March (1)
    • ►  February (1)
    • ►  January (2)
  • ►  2014 (21)
    • ►  November (1)
    • ►  September (2)
    • ►  July (2)
    • ►  June (4)
    • ►  May (1)
    • ►  April (2)
    • ►  March (3)
    • ►  February (4)
    • ►  January (2)
  • ►  2013 (33)
    • ►  December (1)
    • ►  October (4)
    • ►  September (6)
    • ►  August (6)
    • ►  July (3)
    • ►  June (4)
    • ►  May (1)
    • ►  April (2)
    • ►  March (2)
    • ►  February (2)
    • ►  January (2)
  • ►  2012 (32)
    • ►  December (2)
    • ►  November (5)
    • ►  October (5)
    • ►  September (1)
    • ►  August (13)
    • ►  July (2)
    • ►  June (2)
    • ►  March (1)
    • ►  January (1)
  • ►  2011 (14)
    • ►  November (1)
    • ►  October (1)
    • ►  September (2)
    • ►  August (1)
    • ►  June (1)
    • ►  April (1)
    • ►  March (3)
    • ►  February (1)
    • ►  January (3)
  • ►  2010 (18)
    • ►  November (1)
    • ►  October (2)
    • ►  September (2)
    • ►  August (1)
    • ►  July (1)
    • ►  May (1)
    • ►  April (3)
    • ►  March (3)
    • ►  February (3)
    • ►  January (1)
  • ►  2009 (29)
    • ►  December (1)
    • ►  November (3)
    • ►  October (2)
    • ►  August (1)
    • ►  July (4)
    • ►  June (3)
    • ►  May (1)
    • ►  April (2)
    • ►  March (4)
    • ►  February (4)
    • ►  January (4)
  • ►  2008 (26)
    • ►  December (3)
    • ►  November (2)
    • ►  October (3)
    • ►  September (2)
    • ►  July (2)
    • ►  June (3)
    • ►  May (1)
    • ►  April (1)
    • ►  March (4)
    • ►  February (1)
    • ►  January (4)
  • ►  2007 (60)
    • ►  December (6)
    • ►  November (14)
    • ►  October (4)
    • ►  September (8)
    • ►  August (6)
    • ►  July (6)
    • ►  June (9)
    • ►  May (7)

Post Categories

data breach Data Protection cyber security roundup Home Security Patching Hacking Security Awareness ransomware Microsoft privacy PCI DSS GDPR Payment Card Fraud malware password security Encryption NCSC nation-state hackers DDoS DPA ID Theft iot adobe web application security Cloud Security ICO Cyber Crime Huawei Threat Wifi Security Social Media cyber Cyberwar facebook phishing yahoo Mobile Security Cisco Network Security talktalk wannacry application security Fraud RSAC Risk Management ibm Apple British Airways COVID-19 amazon brexit CISO Snowden Vulnerability Management cybersecurity infographic Big Data Intel OWASP Third Party Security Twitter cybercrime dark web football nhs APT10 Coronavirus GCHQ NSA Policies Terrorism cryptocurrencies marriott 5G APT28 BEC MFA aws equifax incident management podcast scam small business AI Apache Compliance Cyber Essentials Insider Threat Magecart data retension enterprise security kaspersky petya vpn CCTV Car Security Cobalt Conference Cryptojacking Hacktivism Manchester City Meltdown SME Windows XP anti-virus appscan bitcoin bluekeep botnets ceo fraud email security firewall ring zoom BYOD Currys DBIR Deep Secure Dixons carphone FBI FCA Hack Heartbleed InfoSec Maze Mirai Mitre O365 PewDiePie Physical Security RSA SHA-1 Spectre T-Mobile Uber VMware Windows 7 Windows Server 2018 artificial intelligence becrypt bsides career credential stuffing cyber insurance dixons labour party lenovo logmeonce management mcafee misconfiguration piracy pitney bowes ryuk sextortion social engineering starwood supply-chain tor training travelex whatsapp 2018 A10 Networks AMD APT1 APT29 APT3 APT37 APT38 APT39 APT40 APTC23 ATP Aebi Schmidt Azure CESG CeX Citrix Coalfire Cognizant Cyber Bullying Cyber Security Challenge UK DLP Decathlon Defcon Disney ECSC Emotet Enterprise Europe Network European Cyber Security Challenge F5 FASTR FFA FIFA Gaming Google HCSEC HSBC IAM ISO27001 Identity Theft Intelligencia Krack Kraken KwikFit LOC Liverpool MH370 Maersk Memty NASA NIST Netscout Nintendo Nominet PC World PoisonTap PokemonGo RAA Redcar Regenix Revil SIGRed SOAR Security Today Sentinel Snake Sodinokibi Sophos Steganography TA505 TGI Friday Trickbot UEFA Verizon Vision Direct Windows 10 YesWeHack access control adware att&ck awards beyer biometrics bitdefender bitsight black friday blockchain blueborne book review boothole bt bugbounty carbon black china christmas cloud security alliance contactless corvid cyber risk darkgate defender deltacharlie digital transformation dropbox drown e-crime congress easyjet education email eternalblue f-secure fedex flashpoint goldenspy greene king hidden cobra ignite imperva iphone isame isf legal sector locky moneytaker mumsnet netflix nordVPN notpetya outpost24 oyster paradox plundervolt rbs retail sans smart cities snapchat sonos spyware superfish telegram teletext holidays tfl threat intelligence threatQ timehop undervolting wearables winzip zavvi zero-day

Last 12 Months Most Popular Posts

  • Lush Credit Card Data Breach
    Before I go into my thoughts on the recent Lush website credit card data breach, I have some important advice to all Lush online customers. ...
  • Facebook Live Oyster Pearl Party Scams
    A little off-topic but recently I've been asked so many times about the Pearl Parties live broadcasts appearing all over Facebook status...
  • The Billion Pound Manchester City Hack
    The sport of football is a multi-billion-pound global industry, where the world's top-drawer football clubs push competitive advantages ...
  • Is Huawei a Threat to UK National Security?
    On 19th July 2018 the UK government, through the GCHQ backed Huawei Cyber Security Evaluation Centre , gave “limited assurance” that Huawei...
  • Passwords are and have always been an Achilles Heel in CyberSecurity
    LogMeOnce , a password identity management suite provider, has published a detailed interview with myself titled ' Passwords are and hav...
  • Cyber Security Roundup for June 2020
    A roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar ...
  • WinZip Encryption Password Security
    Post Updated - See  WinZip Encryption Password Security (2017) Recently I have received several Emails asking about WinZip encryption, and...
  • Cyber Security Roundup for May 2020
    A roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar ...

Cyber Security News Stream

Tweets by @SecurityToday
4D Cyber Security Awards 2019

Other Security Blogs

  • AWS Security Blog
    Quickly build STIG-compliant Amazon Machine Images using Amazon EC2 Image Builder - In this post, we discuss how to implement the operating system security requirements defined by the Defence Information Systems Agency (DISA) Security Tech...
    4 hours ago
  • Krebs on Security
    Why & Where You Should You Plant Your Flag - Several stories here have highlighted the importance of creating accounts online tied to your various identity, financial and communications services befor...
    7 hours ago
  • Schneier on Security
    Cryptanalysis of an Old Zip Encryption Algorithm - Mike Stay broke an old zipfile encryption algorithm to recover $300,000 in bitcoin. DefCon talk here....
    10 hours ago
  • Help Net Security - News
    Intel, SAP, and Citrix release critical security updates - August 2020 Patch Tuesday was expectedly observed by Microsoft and Adobe, but many other software firms decided to push out security updates as well. App...
    11 hours ago
  • Microsoft Security
    Microsoft Office 365—Do you have a false sense of cloud security? - Security is not just flipping the switch of security features to "on" and think you are done. DART explores the concept of having a false sense of securi...
    1 day ago
  • SpiderLabs Blog from Trustwave
    Patch Tuesday, August 2020 - August's Patch Tuesday is here with 120 CVEs patched. That includes 100 rated as "Important" and 20 rated as "Critical". The bulk of the "Critical" list is...
    1 day ago
  • Google Online Security Blog
    Pixel 4a is the first device to go through ioXt at launch - Posted by Eugene Liderman and Xevi Miro Bruix, Android Security and Privacy Team Trust is very important when it comes to the relationship between a user ...
    2 days ago

About Me

SecurityExpert
View my complete profile

ShareThis

Disclaimer

This is a personal website, all views or opinions represented in this blog are personal to Dave Whitelegg and guest bloggers that post, and do not represent the views or opinions of any business or organisation. All content provided on this blog is for informational purposes only. The owner of this blog makes no representations as to the accuracy or completeness of any information on this site or found by following any link on this site. The owner will not be liable for any errors or omissions in this information nor for the availability of this information.
All original content copyright David Whitelegg 2007-2020. You may not use any original content with. Awesome Inc. theme. Powered by Blogger.