-
Copyright Brian Crane
For some reason I’ve run across many posts and articles about the security vulnerabilities of Web apps you need to look out for, so I thought I’d collect and share them with you.
CIOInsight discusses nine types of vulnerabilities found by security firm Cenzic in the article you can find here.
Not to be outdone, Open Web Application Security Project (OWASP) has released TEN Web app security risks, along with some examples and advice on what can be done to avoid them. You can click here to learn more.
Another new report published in Dark Reading’s Database Security Tech Center warns that, “There is a wide variety of threats that could exploit vulnerabilities in the interface between the Web app and the database: SQL injection, authentication flaws, and privilege escalation are among the most significant.” A link to that story can be found here.
It seems that mobile devices compound the Web app security issue — and may even add a few of their own. This ComputerWorld article says, “The most successful and secure mobile applications are ones that do not implement all of the functionality of the main application into the mobile version, said Clark. Using a bank as an example, the popular functions of money transfers or bill pay abilities can still be used in the mobile app, but with limitations.”