Lessons learned during cross-site scripting security scan…

Development teams need to start including a Security mindset throughout their development lifecycle plans. Application vulnerabilties continue to be the #1 security concern of IT professionals but most companies still do not have a formal security policy around the applications they create.

I get asked quite often, “What do you do?” Not only am I asked this from my boss but also from family, friends and most importantly potential clients. This is a question that was very difficult for me to answer given the vast areas “security” covers. In fact, a very large [...]

I’ve grabbed this post directly off of teh US-CERT security site.  To review the original and other great articles, please visit the site at
http://www.us-cert.gov/cas/tips/ST04-014.html

National Cyber Alert System

Cyber Security Tip ST04-014

Avoiding Social Engineering and Phishing Attacks

Do not give sensitive information to anyone unless you are sure that they are indeed who they claim to be and [...]