Web application security

News 05 Nov 2025
Darktrace: Developer tools under constant attack

Attackers are using automated tools to target development environments within seconds of them going live, warns Darktrace’s global field chief information security officer Continue Reading
By
- Stephen Withers
News 05 Nov 2025
Dutch boardroom cyber security knowledge gap exposed

Cyber security governance professor warns that executives lack the capability to assess cyber threats in implementation approaches Continue Reading

News 19 Mar 2012
Study: Shnakule, four other malnets caused most 2011 attacks

Huge global malnets, such as Shnakule, were responsible for most attacks in 2011, and Blue Coat predicts they will trigger 66% of all attacks in 2012. Continue Reading
By
- Ron Condon
Answer 05 Mar 2012
Session fixation protection: How to stop session fixation attacks

Session fixation attacks rely on poorly managed Web application cookies. Rob Shapland answers a reader’s question on session fixation protection. Continue Reading
By
- Rob Shapland
News 24 Feb 2012
Windows security case study: Controlling Windows 7 user privileges

After migrating from Windows XP to Windows 7, Oxford University Press used Avecto’s Privilege Guard to control Windows 7 user privileges. Continue Reading
By
- Ron Condon
News 03 Feb 2012
Microsoft spurs Browsium to rewrite tool for running IE6 on Windows 7

Microsoft has spurred Browsium to rewrite its tool for running IE6 on Windows 7, limiting the security threat posed by continued use of IE6. Continue Reading
By
- Ron Condon
News 29 Dec 2011
Emerging 2012 security trends demand information security policy changes

2012 security trends involving cookies, fines, devices and threats will demand more skills -- and a little finesse -- from security professionals. Continue Reading
By
- Ron Condon
Tip 14 Dec 2011
CSRF attack: How hackers use trusted users for their exploits

A CSRF attack is a serious Web security threat that, combined with XSS, can be lethal. Learn about the CSRF attack’s anatomy, along with mitigation methods. Continue Reading
By
- Karthik Poojary, Amazon
News 07 Mar 2011
Malvertising, pop-up ad virus problems demand more user protection

A recent pop-up ad infection on the London Stock Exchange's website highlights the growing scourge of malicious advertising, or malvertising. Continue Reading
By
- Ron Condon
Tip 18 Jan 2011
Top seven social media threats

Discover the top seven social media threats in the first of a two-part series on social media related security threats and preventive measures. Continue Reading
By
- Shantanu Ghosh
News 10 Mar 2008
Web 2.0 presents no new security challenges, is just marketing hype: Secure Computing

Secure Computing's Scott Montgomery says Web 2.0 security is marketing hype, application flaws come from overworked programmers and Australia is doing better at cyber-security than the USA and Europe. Continue Reading
By
- Simon Sharwood