Security is about alleviating risks. Proper security audits help organizations spot weak points in their systems, processes and controls that hackers could potentially exploit or that insider threats ...

Achieving Sarbanes-Oxley (SOX) compliance is not impossible, but there are a few key elements beyond ethical leadership that are necessary to achieve and maintain it. Public corporations must ...

Web applications often handle vast amounts of data, from personal user details to sensitive corporate information. As these applications grow in complexity and importance, they also become primary ...

Security weaknesses in web-facing apps used at a large U.S. hospital could leave the facility's IT systems and sensitive ...

The Google security team has released a free, open-source Web app security assessment tool capable of flagging vulnerabilities and potential security threats in Internet-facing applications. The tool, ...

Andrei Neacsu is a cofounder and managing partner at HyperSense. The role of web applications in today's businesses amplifies the repercussions of weak security—leading to potential revenue loss, ...

The starting block of an Application Security initiative is to complete an inventory of all applications within the enterprise. Compile a spreadsheet of the number of applications, type of ...

Given the devastating consequences of a vulnerability breach – including loss of trust, brand damage and financial sanctions – it is perhaps no surprise how much software security is talked about and ...

Jeremiah Grossman wants you to know that firewalls and SSL encryption won’t prevent a hacker from breaking into your e-commerce website, compromising your customers’ data and possibly stealing your ...