web application Archives - Help Net Security

web application

File upload security best practices rarely implemented to protect web applications

August 30, 2021

Despite a marked increase in concerns around malware attacks and third-party risk, only 8% of organizations with web applications for file uploads have fully implemented the …

Why XSS is still an XXL issue in 2021

June 15, 2021

Cross-site scripting (XSS) attacks take advantage of coding flaws in the way websites or web applications generate input from users. Despite their longstanding reputation as a …

3.4 billion credential stuffing attacks hit financial services organizations

May 20, 2021

Akamai published a report that provides an analysis of both global and financial services-specific web application and credential stuffing attack traffic, revealing …

Security doesn’t always require immediacy

May 19, 2021

New security threats emerge almost continuously, meaning we now deal with a known unknown. In the past year alone, malware and ransomware use has sharply increased, 43% of …

DevOps didn’t kill WAF, because WAF will never truly die

May 14, 2021

The web application firewall (WAF) is dead, they say, and DevOps is the culprit, found over the body in the server room with a blade in its hand and splattered code on its …

Even though critical, web application security is getting less attention

April 20, 2021

As organizations shifted focus to support remote work and business continuity amid the challenges of 2020, web application security suffered, according to an Invicti Security …

Using memory encryption in web applications to help reduce the risk of Spectre attacks

March 25, 2021

There’s nothing quite like an actual proof-of-concept to make everyone listen. I was pleased by the PoC released by Google security engineers Stephen Röttger and Artur Janc …

One in four people use work passwords for consumer websites

February 26, 2021

Employees working from home on a company-provided computer are demonstrating a clear lack of cybersecurity knowledge through high-risk behavior, according to a report released …

Most security pros think a WAF is high maintenance

February 19, 2021

An organization’s web application firewall (WAF) is a critical line of defense in protecting proprietary and customer data, but the concern is that some organizations are …

Extortion demands grow as cybercriminals target new online industries

January 29, 2021

There was a 154 percent increase in the number of attacks between 2019 and 2020, with growth in ransom-related DDoS (RDDoS) attacks and a rise in use of existing attack …

Attacks are rising in all vectors and types

November 27, 2020

DDoS, web application, bot, and other attacks have surged exponentially compared to the first half of 2019, according to CDNetworks. In particular, attacks on web applications …

Theory and practice of web application security efforts in organizations worldwide

October 15, 2020

75% of executives believe their organization scans all web applications for security vulnerabilities, while nearly 50% of security staff say they don’t, a Netsparker …

web application

File upload security best practices rarely implemented to protect web applications

Why XSS is still an XXL issue in 2021

3.4 billion credential stuffing attacks hit financial services organizations

Security doesn’t always require immediacy

DevOps didn’t kill WAF, because WAF will never truly die

Even though critical, web application security is getting less attention

Using memory encryption in web applications to help reduce the risk of Spectre attacks

One in four people use work passwords for consumer websites

Most security pros think a WAF is high maintenance

Extortion demands grow as cybercriminals target new online industries

Attacks are rising in all vectors and types

Theory and practice of web application security efforts in organizations worldwide

Don't miss

How to protect the corporate network from spyware

Leveraging AI and automation to identify sensitive data at scale

We cannot afford for healthcare security to be the “lowest-hanging fruit”

How do I select a data privacy management solution for my business?

US agricultural co-op hit by ransomware, expects food supply chain disruption