Since 1999

Cybersecurity Category

Covering all aspects of security, threats, and best practices.

10/07/2020

The convergence of Ruby on Rails and #AppSec Podcast Appearance

Frank Rietta guest on the Application Security Podcast with Chris Romeo

Read More »

04/25/2020

When Georgia was on the Brink of Outlawing Critical Computer Security Research, the Governor's Office Met with Me, and Vetoed it!

On April 25, 2018, nine information security professionals met with the Georgia Governor's office to discuss why the proposed criminal hacking law passed by both houses of the General Assembly was extremely problematic to Georgia's booming Information Security industry and risked putting the public at greater risk. Governor Deal vetoed the law a few weeks later.

Read More »

04/21/2020

Dependency Security and Hacking Rails with Jason Swett (Podcast)

Podcast interview about Ruby on Rails dependencies, security, state-sponsored hacking, and practical tips on how to protect your organization.

Read More »

04/01/2020

Snowfroc 2020 - Application Security and Development

Application security is important to an entire company, but what practical steps can we take on a development team to keep applications secure?

Read More »

02/06/2020

Dependency Management and Security

Security conscious developers can avoid security pitfalls in their own code, but what about the code that the developer did not write but is using?

Read More »

01/21/2020

A Newer Dev's Perspective on Learning OWASP

Why I'm learning Application Security as a blooming developer, and why other new programmers should consider it too! An overview of AppSec for beginners.

Read More »

01/13/2020

AppSec as a Requirement in the Development Process

A prediction that web application security will not be a post-development plugin you can add to your application in the decade of 2020-2030 and what you can do about it.

Read More »

10/29/2019

Xfinity is Man-in-the-Middle (MITM) Attacking my Internet

Did you know that Xfinity regularly launches security attacks against it's own customers?

Read More »

10/28/2019

Patch Production Faster with Security-oriented Agile Development Practices

Companies take too long to patch production leaving plenty of time for threats to attack! Here's how to fix it with security-oriented Agile practices.

Read More »

08/22/2019

The Case for 2FA, Post Rest-client Gem CVE

On 08/19/2019, a CVE was discovered on a popular Ruby gem called Rest-client. Although caught quickly, this could raise the case of 2FA being a requirement for Package Manager accounts like Rubygems and NPM.

Read More »