Computerworld

Web application security and Sarbanes-Oxley compliance

Achieving Sarbanes-Oxley (SOX) compliance is not impossible, but there are a few key elements beyond ethical leadership that are necessary to achieve and maintain it. Public corporations must ...
Computer Weekly

Web application vulnerability statistics show security losing ground

A survey of almost 600 custom-built Web applications revealed developers are still failing to eliminate the most commonly exploited vulnerabilities from their code, allowing attacks such as SQL ...
Computerworld

Application security vulnerabilities in Web.config files, part 1

SPI Dynamics – These days, the biggest threat to an organization’s network security comes from its public Web site and the Web-based applications found there. Unlike internal-only network services ...
Bleeping Computer

The OWASP Top 10: What They Are and How to Test Them

Web applications often handle vast amounts of data, from personal user details to sensitive corporate information. As these applications grow in complexity and importance, they also become primary ...
CSOonline

How to Evaluate (and Use) Web Application Security Scanners

Specialized application penetration testing tools and services can help keep websites from serving as a front door for hackers and malware Traditionally—if such a word can apply to the rapidly ...
CSOonline

12 top web application firewalls compared

A web application firewall (WAF) is a critical component of an enterprise security infrastructure, providing a key security layer for web-facing applications and APIs. As web applications mature and ...