Archive

The Critical Need for Multi-Role Testing in Application Security

December 19, 2024 As web, thick client, mobile, and IoT applications have become more robust, authentication and authorization has become an incredibly complex and sophisticated problem.

The Capital One Breach: An AppSec Perspective

By now, I’m sure that many, if not all of you are aware of the recent Capital One breach. If you are, great? If not, you’ll be brought up to speed after finishing the next sentence.

Ounces or Pounds: Application Security Practices to Protect Data in the Age of Privacy Regulation

Throughout 2018, the world was presented with some extraordinary data privacy-related headlines.