Security Archives - Page 3 of 14

Security

6 minute read
No comments

Serverless security: how do you protect what you aren’t able to see?

Jb
December 17, 2020

Serverless security is a fascinating topic. As more organizations move to distributed architectures and new ways of running their services, new security considerations arise. I spoke about this topic at…

View Post

Security

7 minute read
No comments

SQL injection, explained: what it is and how to prevent it

Carlos Schults
December 15, 2020

A SQL injection is a security attack that is as dangerous as it is ingenious. By abusing the data input mechanisms of an application, an attacker can manipulate the generated…

View Post

4 minute read
No comments

How to use frameworks to implement your Security Paved Road

Jb
December 10, 2020

I recently sat down with Sr. Research Lead at Synopsys and framework specialist, Ksenia Peguero, on Episode 2 of the AppSec Builders Podcast. In the episode, “Framework Security with Ksenia…

View Post

Security

6 minute read
No comments

Scaling security in a high growth company: our journey at Sqreen

Jb
December 8, 2020

Five years after founding Sqreen, many things have tremendously changed. One of them is our approach to security. It’s often said that security is a journey without end. That it’s…

View Post

6 minute read
No comments

Learnings from Sqreen’s State of App Sec Report: 70% of Ruby on Rails exploits were SQLi

Carlos Schults
December 1, 2020

Saying that digital security is “important” would be the understatement of the century. It’s probably the most crucial aspect of any application nowadays. Unfortunately, security is easy to get wrong,…

View Post

Security

7 minute read
One comment

XML External Entity (XXE), explained

Omkar Hiremath
November 23, 2020

Web application security has gained a lot of recent interest. The quality and skills of hackers have improved over time. So it’s important for the defenders of an application to…

View Post

Security

10 minute read
No comments

A vulnerability in Sqreen: the attacker’s point of view

Charles Fol
November 19, 2020

A note from Sqreen’s CTO When Charles reached out to me to disclose this issue, we reacted with one goal in mind: protecting our customers. As such, we built a…

View Post

PHP
Security

5 minute read
No comments

Learnings from Sqreen’s State of App Sec report: PHP apps are 3x more likely to be exploited

Carlos Schults
November 17, 2020

With each passing year, we move more and more aspects of our lives online. The line between the online and the offline is becoming thinner and thinner as time goes…

View Post

4 minute read
No comments

From Nestaway: Automating Security Operations — Detecting and Permanently Blocking Abusive Clients

Ranjan Kathuria
November 12, 2020

Today, we’re featuring a blog post from Nestaway that was originally posted in Nestaway Engineering on Medium. Automating Security Operations is a tough task but can make the life of a security person…

View Post

Security

6 minute read
No comments

Preventing race condition vulnerabilities in your organization

Chakshu Mehta
November 10, 2020

If you’re looking to make your applications more secure, you’ve probably heard of the OWASP Top 10. The OWASP top 10 covers the most common vulnerabilities, but plenty of other…

View Post