Is Your Site Protected Against Drupal Security Flaws?
This past summer saw a pair of Drupal security flaws exposed and patched. Is your website secure?
How Can Media Companies Be More Confident in Their Cybersecurity Strategy and Policy?
According to recent research, only 1 percent of media companies are very confident in their cybersecurity strategy and policy.
What’s the Best Strategy to Manage Application Security Risk?
To protect their organizations from threat actors targeting software vulnerabilities, security leaders should adopt an integrated approach to application security risk management.
Just 1 Percent of Companies Feel Ready to Fend Off Media Security Threats, Survey Reveals
According to a recent study, just 1 percent of U.S. media companies reported high levels of confidence in their ability to withstand a variety of media security attacks.
WordPress Issues Security Patch to Mitigate SQL Injection
With its latest update, WordPress patched a vulnerability that could enable malicious plugin and theme developers to execute SQL injection attacks.
Leaking Cloud Databases and Servers Expose Over 1 Billion Records
According to IBM X-Force, misconfigured cloud databases accounted for more than 71 percent of reported leaked records so far in 2017.
Why Do We Care So Little About Application-Layer Protection?
In the current world of cloud and agile development, we deliver code monthly, weekly and even daily. One of my engineering teams at IBM affectionately refers to updates as the “daily dose.” We have developed robust processes to ensure...
Command Injection: A Deadly Needle in the Haystack
Command injection attacks may not get a lot of hype, but they can be seriously damaging to an enterprise that isn't careful about its security.
Fool Me Once, Shame on You — Fool Me Eight Times, Shame on My Security Posture?
Organizations with weak security posture are an attractive target for cybercriminals, and they may find themselves coming under fire frequently.
Inside the Mind of a Hacker: Attacking Databases With SQL Injection
Hackers frequently use SQL injection as a means of attacking and taking over databases. Here's what you need to know to avoid this type of breach.