application security

security awareness security legislation application security training application security appsec secure code training devsecops

The new NIST guidelines: Why customized training is essential to create secure software

2nd December 2019

The National Institute of Standards & Technology (NIST) released an updated white paper, detailing several action plans for reducing software vulnerabilities and cyber risk.…

Pieter Danhieux

secure code training university appsec devsecops secure coding application security application security training

In-depth security training is raising questions in education

1st October 2019

While secure coding needs to become a mandatory component of software engineering at the tertiary level, some universities are leading the charge in providing top-notch training and prioritizing security as part of the development process from the very beginning.p…

Pieter Danhieux

appsec Coders Conquer Security deserialization secure code training application security training application security

Coders Conquer Security: Share & Learn Series – Insecure Deserialization

20th September 2019

Insecure deserialization can happen whenever an application treats data being deserialized as trusted. If a user is able to modify the newly reconstructed data, they can perform all kinds of malicious activities such as code injections, denial of service attacks or elevating their privileges.…

Jaap Karan Singh

appsec secure coding sql injection xss hackers application security secure code training data breach data protection

Why we need to support, not punish, curious security minds

14th August 2019

Teen security researcher, Bill Demirkapi, exposing major vulnerabilities in software used by his school certainly brought back some memories. I remember being the curious kid, lifting the hood on software to take a peek underneath and see how it all worked... and if I could break it.…

Pieter Danhieux

cybersecurity appsec business logic remote code execution application security secure coding

The Great Global Patch: VxWorks Flaws Set to Compromise Millions of Devices

5th August 2019

While VxWorks isn’t a household name to the average consumer, this software product benefits many people just like you and me, each and every day. And now, we are faced with the possibility that hundreds of millions of VxWorks-powered devices are now compromised.…

Pieter Danhieux

Tags

The new NIST guidelines: Why customized training is essential to create secure software

In-depth security training is raising questions in education

Coders Conquer Security: Share & Learn Series – Insecure Deserialization

Why we need to support, not punish, curious security minds

The Great Global Patch: VxWorks Flaws Set to Compromise Millions of Devices

Master Secure Coding