veracode Resources

Related Tags: Veracode Inc. (4 results)

Sponsored White Papers, Webcasts, and Downloads

Fortify warns of configuration weaknesses in SOA deployments: Security code review specialists Fortify Software has issued a warning about major configuration weaknesses affecting SOA service oriented architecture deployments from IBM, Microsoft and Apache. According to Fortify, certain configurations of Apache Axis, Apache Axis 2, IBM WebSphere 6.1, Microsoft .NET Web Services Enhancements WSE 2.0 and...; Tags: Apache Software Foundation, SOA, Application Security, Attack, Veracode, Service-Oriented Architecture (SOA), Security, Middleware, Enterprise Software, Web Services, Software, Ryan Naraine; Blog posts 2008-07-29
Guide to PCI Application Security Compliance for Merchants and Service Providers: Triggered by a number of security breaches and concerns over the abuse and theft of credit card data, major credit card companies including American Express, Discover, JCB, Master Card and Visa formed the PCI Security Standards Council PCI SSC in September 2006. The PCI Data Security Standard PCI DSS delineates...; Tags: Veracode, PCI, Storage, Hardware; White papers 2008-07-10

Top 25 coding defects listed, surprising nobody with a clue: The SANS institute has produced a list of the top 25 classes of programming flaws. The list won't make the flaws go away, but it does provide software purchasers with a powerful tool for whacking irresponsible software vendors. A consortium of government, industry, and academic software...; Tags: Software, Tools & Techniques, Management, Adam O'Donnell; Blog posts 2009-01-13
An easy fix ignored: Guest post by Chris Eng In the wake of this morning's 25C3 presentation by Alex Sotirov and Jacob Appelbaum, most of the coverage I've read so far has focused on the technical details and real-world impact of their findings. Rightly so -- their paper describing the attack...; Tags: Certificate Authority, Attack, MD5, Security, Ryan Naraine; Blog posts 2008-12-30
Joe the Plumber's data compromised by government insider: 2008 is shaping up to be the year of the politically-motivated data leakage events. First it was Sarah Palin, then Bill "Papa Bear" O'Reilly, and now apparently Joe the Plumber has been struck. As pointed out by Chris Wysopal on the Veracode Blog, the Columbus Dispatch...; Tags: Event, Security, Adam O'Donnell; Blog posts 2008-10-25

Sarah Palin's Yahoo account hijacked, e-mails posted online: On the heels of media reports that Republican vice presidential candidate Sarah Palin was using a private Yahoo e-mail account (gov.palin@yahoo.com) to conduct Alaska state business, hackers have broken into the account and posted evidence of the hijack on Wikileaks. An activist group calling itself 'anonymous' claimed...; Tags: Yahoo! Inc., Sarah Palin, Wikileaks, E-mail, Online Communications, Ryan Naraine; Blog posts 2008-09-17
Should Microsoft start paying for vulnerabilities?: Hackers are starting to agitate for Microsoft to start paying for information on security flaws found in its software products.The issue surfaced this week after the MSRC Microsoft Security Response Team posted a message on the sla.ckers.org message board, calling on third-party researchers to submit vulnerability information directly to Redmond...; Tags: SECURITY, Microsoft Corp., responsible disclosure, vulnerability, hacker, software; Blog posts 2007-03-15

Smart Tech Expert advice on innovations in healthcare and the green technologies that make it happen. Find out more
Smart Business Discussion and advice on management issues that revolve around making your world smarter and more useful. More Smart Advice
Smart People The best and worst moves in the management and strategy trenches. Learn More