<img height="1" width="1" src="https://www.facebook.com/tr?id=1879927395628828&amp;ev=PageView &amp;noscript=1">

Your [Users’] Browsers, Crypto Mining and $24

I wrote a little while back about the AppSec Serenity Prayer and talked about things you can and can’t control in terms ...

Cryptocurrency Mining Where You Least Expect it

While working onsite with a client something popped into the Incident Response Queue and the client had to leap into ...

Reports of CSRF's demise have been greatly exaggerated

When the new OWASP Top 10 came out in December 2017, I was somewhat enthusiastic about one of the items dropping off: ...

Plain HTTP, Postcards and HTTPS - Part 3

What Does HTTPS Get Me Then?

Plain HTTP, Postcards and HTTPS - Part 2

Encryption 101

Plain HTTP, Postcards and HTTPS - Part 1

Recent Training Feedback

When Time Is Out - How Error Messages Can Give Hackers a

As people become more and more comfortable with shopping, banking, and communicating online they inevitably run into ...

How to Avoid the Netflix Mess: Orange is the New Black Leaked

Recently, thehackernews.com issued a story about the hacking group The Dark Overlord (TDO) breaking into a partner, ...

New York, New York, A Helluva Town (and State) – Part III

In parts I and II of the series on New York state’s new banking security regulations, we explored the requirements due ...

The Application Security Serenity Prayer

Control What you Can Even though I often struggle with keeping it myself, I often counsel my kids to worry about ...

CVE-2017-5638

If your application is running Struts 2 2.3 - Struts 2.3.31 or Struts 2.5 - Struts 2.5.10, you’re vulnerable to a ...

Spooky Tricks

Vault7 Shows the Government's Spy Kids Hard at Work In the late 1960s Rose Wyler, Gerald Ames, and Talivaldis Stubis ...

Manual SQL Injection and ORM Injection Searches

Much like XSS, SQL and ORM injection are among those vulnerabilities that are detected quite well by the mainstream ...

The Risks of Public WiFi

It’s 2017-- we pay our bills, get updates about our friends lives, and even sign documents over the internet. With such ...

Net Neutrality

Net Neutrality is a concept I find myself coming back to time and time again. It’s been a subject of importance over ...

Want more of the AsTech Blog? You got it.
Blog subscribers get email updates twice a week.

Comments