The Capital One breach is grabbing a lot of attention lately. This breach is notable not only for its size of 100M stolen customer records but also because the data was taken from a site hosted at AWS. I will refrain from rehashing the details here; you can read them...
During the course of a web application test, occasionally our automated tools will miss a serious vulnerability. Cross-Site Request Forgery is one of these vulnerabilities that our scanners sometimes miss. You can read more about CSRF here. This is why it is so...
When an industry leader updates their flagship product, the technology community pays attention. Any time Apple updates the iPhone, the tech media buzzes for months. When Microsoft announced plans to update the Xbox, the gaming world debated ad nausum what could...
