HackDig : Dig high-quality web security articles

Prioritizing Cybersecurity Throughout All Web Development Sprints

No one doubts the importance of cybersecurity in web development — and yet, often in the development cycle, we neglect to prioritize it across each sprint and into the final product. Making cybersecurity a priority throughout every development sprint cycle is necessary to combat the tide of digital attacks threatening the modern web. But how can you ensure y
Publish At:2022-02-17 02:07 | Read:2352 | Comments:0 | Tags:Cyber Security best practice web development Web Security se

Hackers hide stolen payment card data inside website product images

Attacks that compromise online shops to skim payment card details are increasing and growing in sophistication. The latest technique involves hiding malicious code and stolen data inside legitimate files.A Dutch researcher reported last week that almost 6,000 online shops, most of them built with the Magento content management system, have malicious code
Publish At:2016-10-19 06:50 | Read:4685 | Comments:0 | Tags:Security Malware Web Development Ecommerce

FairWare ransomware infects servers through exposed Redis instances

Days after reports that a new ransomware attack was deleting files from web servers, security researchers determined that some of the affected servers were hacked through insecure deployments of the Redis database.Over the past week, reports popped up on support forums about web servers being wiped clean and hosting a ransom note through which attackers
Publish At:2016-09-02 01:25 | Read:8299 | Comments:0 | Tags:Security Encryption Web Development Web Services Servers

Mozilla launches free website security scanning service

In order to help webmasters better protect their websites and users, Mozilla has built an online scanner that can check if web servers have the best security settings in place.Dubbed Observatory, the tool was initially built for in-house use by Mozilla security engineer April King, who was then encouraged to expand it and make it available to the whole w
Publish At:2016-08-26 23:10 | Read:5024 | Comments:0 | Tags:Security Web Development Web Services

Critical flaws in ImageMagick library expose websites to hacking

A tool used by millions of websites to process images has several critical vulnerabilities that could allow attackers to compromise Web servers. To make things worse, there's no official patch yet and exploits are already available.The vulnerabilities were discovered by Nikolay Ermishkin from the Mail.Ru security team and were reported to the ImageMagick
Publish At:2016-05-04 17:35 | Read:5632 | Comments:0 | Tags:Security Web Development Internet

MIT's new bug finder uncovers flaws in Web apps in 64 seconds

Finding bugs in Web applications is an ongoing challenge, but a new tool from MIT exploits some of the idiosyncrasies in the Ruby on Rails programming framework to quickly uncover new ones.In tests on 50 popular Web applications written using Ruby on Rails, the system found 23 previously undiagnosed security flaws, and it took no more than 64 seconds to
Publish At:2016-04-16 11:35 | Read:4784 | Comments:0 | Tags:Application Development Testing Web Development Security


Share high-quality web security related articles with you:)
Tell me why you support me <3

Tag Cloud