Industry News

Web Security Books

Useful Documents

White Papers


2005

A phishing wolf in sheep's clothing
CNET
March, 2005

Known Hole Aided T-Mobile Breach
Wired
February, 2005

Common Web Application Vulnerabilities
Computer World
February, 2005

Payroll hole exposes dozens of companies
ZDNet
February, 2005

Payroll site closes on security worries
ZDNet
February, 2005

2004

5 Security Myths
VARBusiness
July, 2004

Thwarting SQL Web Hacks
VARBusiness
April, 2004

Insecure Web Sites
VARBusiness
March, 2004

WASC Tackles Web Application Security
BetaNews
February, 2004

More Scary Tales Involving Big Holes In Web-Site Security
The Wall Street Journal
February, 2004

Consortium to Target Web App Security
eWeek
February, 2004


OWASP Top 10 for 2004
January, 2004


2003


FTC investigates PetCo.com security hole
SecurityFocus
December, 2003

Victoria's Secret fined for Web site security flaw
SacBee
October, 2003

Is your company site being hacked without your knowledge?
OSAC
October, 2003

Rethinking Software Testing
SDTimes
October, 2003

Car shoppers' credit details exposed in bulk
SecurityFocus
September, 2003

Incessant hacking exposed
Internet magazine
September, 2003

Security and Sarbanes-Oxley
SearchSecurity.com
September, 2003

Web hosting company confirms hack attack
News.com
September, 2003

Hackers Steal 13,000 Credit Card Numbers
Washington Post
August, 2003

Web applications open to hack attacks
vnunet
July, 2003

Web applications fail security tests
Computing
July, 2003

Shell recovers slip after spilling applicants' details
The Register
July, 2003

Netcontinuum, SPI submit AVDL draft
IDG News Service
7/30/03

Emerging Technology: Protect Web Applications from Abuse and Misuse
TechWeb
July, 2003

An Easy Test For Web Site Security
INTERNET WEEK
June, 2003

PetCo Plugs Credit Card Leak
SecurityFocus
June, 2003

Guess settles with FTC over cybersecurity snafu
SecurityFocus
June, 2003

Expert: Casinos need to improve online security
Las Vegas Sun
May, 2003

OASIS Panel Will Develop Common Language For App Security
TechWeb
May, 2003

OASIS Wants to Classify Web Security
ESecurity Planet
May, 2003

OASIS to develop common security language
InfoWorld
May, 2003

The Bugs Stop Here
CIO Magazine
May, 2003

Lamo Hacks Cingular Claims Site
Wired
May, 2003

XML security standard touted at show
April, 2003

OASIS Prescribes AVDL for Web Security
Internetnews.com
April, 2003

OASIS Takes Up Interoperability Spec For Security Apps
TechWeb
April, 2003

Vendors Pitch Application-Security Spec
InformationWeek
April, 2003

Application Vulnerability Description Language Coined
The Register
14/04/2003

Rule of secure coding: 'See input as evil'
ADTMag
April, 2003

Security holes found in Google's Blogger
InfoWorld
March, 2003

FTD.com hole leaks personal information
News.com
February, 2003

Securing a vulnerable Web
KMWorld
February, 2003



2002


Tower Records site exposes data
CNET
December, 2002

Flaws leave sites exposed
vnunet
September, 2002

Web Application Security Woes

eWeek
September, 2002

Web site exposes shoppers' info
CNET
August, 2002

Study: Web more vulnerable now than ever
NetworkWorldFusion
July, 2002

FBI, Princeton to investigate breach of Yale admissions Web site
ComputerWorld
July, 2002
http://reviews-zdnet.com.com/4520-6033_16-4207478.html
ZDNet
July, 2002

Guesswork Plagues Web Hole Reporting
SecurityFocus
March, 2002


2001

Expert hacks Hotmail in 1 line of code
USA Today
August, 2001

New Hack Poses Threat to Popular Web Services
BetaNews
August, 2001

Hotmail Flaw Raises Questions Over XP Security
BetaNews
August, 2001

Hacked Web site damaged PCs in Japan
InfoWorld
August, 2001

Security danger found in web postings
NewScientist
August, 2001

Search this site
Home :: About Us :: Projects :: Mailing Lists :: Library :: News :: Links :: Contact Us
© Copyright 2005, Web Application Security Consortium. All rights reserved.      Hosting sponsored by FireHost