The number of serious zero-day vulnerabilities and potential exploits discovered in recent days is higher than normal.

Link:
Multiple Vendors Affected By New Vulnerabilities

Ten of Application Security industry’s coolest, most interesting, important, and entertaining links from the past week — in no particular order. Hitler and Cloud Computing Security Microsoft SDL Core Training Classes & Tools A Big Case of …OOPS… Customer-Induced FUD NT OBJECTives Response to the Larry Suto Report Web Security Dojo v1.0 & Watcher 1.3.0 release Online finance flaw: Ameriprise III Banks, Businesses, Viruses and the UCC Breaking Weak CAPTCHA in 26 Lines of Code Finding Input Validations flaws with Taint Checking WhiteHat Security is a leading provider of website security services.

Visit link:
Best of Application Security (Friday, Feb. 26)

Within days of Adobe’s release of out-of-band security updates for both Acrobat and Reader, word now comes from security researcher Aviv Raff, of another new vulnerability in an Adobe product. The flaw was found in Adobe Download Manager (DLM), an application Adobe uses to deliver common applications (e.g., Flash and Reader ) to users’ systems.

View original post here:
New Adobe Download Manager Bug

Ten of Application Security industry’s coolest, most interesting, important, and entertaining links from the past week — in no particular order. Microsoft’s Many Eyeballs and the Security Development Lifecycle A Comparison of DBIR with UK breach report Infrastructure vs

More here:
Best of Application Security (Friday, Feb. 19)

The GSMA Mobile World Congress 2010 is starting next week in Barcelona. It’s going to be a huge event.

Read more here:
Just sign here

Ten of Application Security industry’s coolest, most interesting, important, and entertaining links from the past week — in no particular order. Accuracy and Time Costs of Web Application Security Scanner Report The Web won’t be safe, let alone secure, unless we break it Why don’t websites default to SSL/TLS?

Go here to read the rest:
Best of Application Security (Friday, Feb. 5)

Facebook started rolling out a new home page and navigation menus earlier today. And whenever Facebook adds new features, in this case the Applications and Games dashboards , there’s usually a new privacy setting as well. This is what part of the new Applications dashboard looks like

See the rest here:
New Facebook Home Page, Important New Privacy Setting

For those attending RSA Conference 2010 (San Francisco / March 1 – 5) and want to mingle with fellow Web application security people, the Web Application Security Consortium (WASC) luncheon is the place to be. Free drinks and appetizers will be served (sponsored by WhiteHat Security ). WASC meet-ups are rare opportunities to shake hands with like minded people we only otherwise communicate with virtually

Read more here:
WASC RSA Meet-Up 2010!

Ten of Application Security industry’s coolest, most interesting, important, and entertaining links from the past week — in no particular order. Is APT After You

Read more from the original source:
Best of Application Security (Friday, Jan. 22)

Ten of Application Security industry’s coolest, most interesting, important, and entertaining links from the past week — in no particular order. Top Ten Web Hacking Techniques of 2009 (Official) Default https access for Gmail new static analyzer from Google Purported Interview With Facebook Employee Details Use Of ‘Master Password’ Software testing firm says no to responsible disclosure Web-based systems vs

View original post here:
Best of Application Security (Friday, Jan. 15)