Secure coding training

Latest posts

Secure Coding in Startups

Secure Coding in Startups

Discover how startups can use secure coding to address security vulnerabilities and protect sensitive information in 2024!

GO vs C

GO vs C

Focusing on Go vs. C, we explore why Go may be better than C for developers: See differences in performance, usability, and memory safety.

Top 5 Java frameworks in 2022

Top 5 Java frameworks in 2022

Selecting the right Java framework will help you get the most out of Java and build applications quickly and securely. In this guide, you’ll learn about the different types of Java frameworks, how to choose the best one for your project, and some of the advantages of using each.

Deserialization vulnerabilities in Java

Deserialization vulnerabilities in Java

Understanding serialization and deserialization vulnerabilities is the first step toward building secure applications. For most developers, it’s a challenge to find the right balance between coding securely and meeting other objectives like tight deadlines. This often results in products that are vulnerable to deserialization attacks which would be otherwise difficult to stage.

JWT handling best practices

JWT handling best practices

The purpose of this post is to present one of the most popular authorization manager open standards JWT. It goes into depth about what JWT is, how it works, why it is secure, and what the most common security pitfalls are.

Ruby needs security

Ruby needs security

Every year, Ruby is becoming more and more popular thanks to its elegance, simplicity, and readability. Security, however, is an issue we can’t afford to neglect.

Interview with Gábor Molnár, Google

Interview with Gábor Molnár, Google

Being up-to-date with the latest information security trends is not easy. Deploying them on a regular basis is even harder. We asked an expert for best practices!

Zero trust security

Zero trust security

Zero Trust is a security framework requiring all users, whether inside or outside your organization, to be authenticated, authorized, and continuously validated. This allows for security configuration to happen before granting or keeping access to applications or data.

4 API testing methods

4 API testing methods

Understanding the importance of API security is just the beginning of an extensive process to secure your APIs from attacks.

OWASP 2021

OWASP 2021

The new OWASP Top 10 list has been released to show us the new priorities of security risks that web applications face.

The main benefits of CTF competitions

The main benefits of CTF competitions

Capture the Flag competitions are one of the best ways to equip your developers with the secure coding skills they need. Learn about the benefits of CTF events in our blog post!

Top Cybersecurity Threats in 2021

Top Cybersecurity Threats in 2021

2021 is coming to a close, and it’s time to take stock of the security lessons we’ve all learned this year. This way we can better understand and prepare for the security threats we’ll face next year.

Hacktivity 2021 – Our experiences

Hacktivity 2021 – Our experiences

Our team attended Hacktivity, the biggest IT security conference in Central and Eastern Europe – a whole day full of interesting presentations and workshops. Click to see how we liked it!

Best practices to prevent a password breach

Best practices to prevent a password breach

Most employee passwords fail to follow even the simplest anti-theft precautions, such as creating passwords with a minimum of 12 characters. In a recent study of 15.2 billion passwords, only 2.2 billion were found to be unique.

Why cybersecurity is important for business

Why cybersecurity is important for business

Cybersecurity is, by nature, a negative asset. As with any protective measure, one of the biggest challenges is to measure the value (or return on investment, ROI) of cybersecurity. It is even more difficult to get stakeholders – customers, users, and decision-makers – in the company to understand its value.

Security breaches then and now

Security breaches then and now

The increasing threat of security breaches mostly has to do with the increasing amount of information being stored. Although individuals are responsible for most data creation, 80% of all data is stored by enterprises.

Coding vs secure coding: 6 rules to live by

Coding vs secure coding: 6 rules to live by

Security breaches can impact any organisation. Insecure coding practices may result in increased security risk, and put businesses in jeopardy. Click to read our post about 6 secure coding rules to live by!

Secure coding training for PCI DSS compliance

Secure coding training for PCI DSS compliance

In payment transactions, security is critical, and any weakness does not only compromise the data, but can result in credit card fraud that causes huge losses for the stakeholders.

Sensitive data exposure – It’s in your hands

Sensitive data exposure – It’s in your hands

Exposing data, especially sensitive data, is a long-time-coming threat. Since personal information such as addresses, payment details, non-hashed passwords, config files, and so on are very popular targets among attackers, it’s obvious that sensitive information is supposed to be protected from unauthorized access.

Compliance training – Security awareness by design

Compliance training – Security awareness by design

Compliance standards are a valuable but mostly misunderstood part of the corporate culture. Like any other certificate, a compliance certificate demonstrates that the entity/business operates according to a commonly accepted standard and signals trust towards third parties. A successful compliance certificate eases regulatory processes, opens new markets, and in general speeds up revenue generation, which is the key metric for businesses.

Don’t just look for security issues, discover root causes!

Don’t just look for security issues, discover root causes!

Application security is one of the cornerstones of cybersecurity, and it is critical to defend a successful business operation. To strengthen cybersecurity defenses, businesses have to apply rigorous testing and remediate the issues that were found.

Python best practices and common issues

Python best practices and common issues

Python is a high-level, flexible programming language that offers some great features. To be as effective as possible, it is important to possess the knowledge to make the most out of coding with Python.

Where the money is: Financial cybersecurity

Where the money is: Financial cybersecurity

Money management moves towards complete automation, and the evolution of cybercrime follows along. The money heist has changed, we all know that. Cyberspace takes more and more of that cake, but the reason behind attacks remains the same: money, in any form.

Network compromised: Security Issues in Telecommunication

Network compromised: Security Issues in Telecommunication

Telecommunications is everywhere. Hence, this area is more exposed to external threats than others. It is crucial to ensure a strong line of defense in this industry, so your entire organization has up-to-date protection and is aware of best practices.

Security Champions: Interview with Alexander Antukh, Glovo

Security Champions: Interview with Alexander Antukh, Glovo

Security champions represent an essential part of any security programs. They lead their teams on security projects, ensure internal security and help keeping security on the top of your mind. But how exactly they operate in a business? We asked Alexander Antukh, Director of Security at Glovo for professional insights.

Why do you need a security champions program?

Why do you need a security champions program?

As the company grows the leadership wants to establish a security program to ensure the solid and undisrupted operation of the business. Security at this point is essential, especially when calculating the loss from a halted business, even for a few hours.

Test your secure coding skills