Cyber-Security - DevEnum.com

Security misconfiguration causes the cyber-Security risk

The sixth category in the OWASP Top 10 is security misconfiguration. OWASP describes this as security misconfiguration is the most common issue in the data. The main reason that causes this is configurations issues.Such as If you are using the default configuration, or no configuration at all, misconfigured communication headers, outdated systems updates, old frameworks, …

Security misconfiguration causes the cyber-Security risk Read More »

Insufficient logging- A Security Risk

Cyber-Security

Logging and Monitoring of application and its data make it secure and in the events of a breach, it helps us act fast to protect it. There are monitoring mechanisms for both external and internal monitoring. In the case of software application, we can monitor by using logging and system alerts. If a system lacks …

Insufficient logging- A Security Risk Read More »

What is Insecure Deserialization in applications?

Cyber-Security

Insecure deserialization is a defect if it is present in your application. This defect can put your application at risk. As a software developer, it is important to know about this. And learn about techniques that help to prevent this defect in the application. Today in the digital world almost all the applications manipulate the …

What is Insecure Deserialization in applications? Read More »

What is a Cross-site scripting attack? How to prevent it?

Cyber-Security

Cross-site scripting is another type of attack that hackers use to cause damage, steal data, install malicious worms on web applications. Today almost all the websites allow users to enter some data or comments. There are fields available in the application for comments, survey forms, search forms etc. Users have the facility to enter the …

What is a Cross-site scripting attack? How to prevent it? Read More »

How to Prevent common software vulnerabilities in the application?

Cyber-Security

The next item of the OWASP Top 10 is using components with known vulnerabilities in applications and software. In this article, we will understand what is this and how it puts your application at risk. A lot of software applications today use many third-party components, libraries, frameworks. Many applications call APIs and web services that …

How to Prevent common software vulnerabilities in the application? Read More »

What is Broken Access Control? How to protect it?

Cyber-Security

The next item in the OWASP Top 10 is broken access control. In today’s digital world almost every application, device, the software has an access control mechanism in place. An authenticated user is allowed to do only data or features that are within that user’s scope. But if a user is able to get access …

What is Broken Access Control? How to protect it? Read More »

What is the XXE or XML External Entity attack?

Cyber-Security

Today we are going to learn about XML External Entity attacks. Before we begin our article on this let us understand what is XML.XML stands for Extensible Markup Language. It is used by applications and websites to store and transmit data around. XML External Entity attack is a kind of Injection attack. In this attack, …

What is the XXE or XML External Entity attack? Read More »

What is Sensitive Data Exposure & how to protect data?

Cyber-Security

Sensitive Data Exposure is a type of security risk or vulnerability that many applications and users face with the Data in applications. Applications & online websites capture data from their users for different operations that they support. How sensitive data get exposed? A lot of Government websites, hospital websites, and many more collect people’s data …

What is Sensitive Data Exposure & how to protect data? Read More »

What is Broken Authentication? How to secure application authentication?

Cyber-Security

Broken authentication is another type of attack that people face these days with a lot of applications that they are using. This kind of attack can take advantage of your accounts by some of the mistakes that you make and a few minor things that the application can let you cause. So overall this kind …

What is Broken Authentication? How to secure application authentication? Read More »

What are Injection attacks? How to prevent Injection attacks?

Cyber-Security

Injection attacks are attacks that take advantage of your system and try to execute some harmful executables on your system. To execute a malicious application on your system they try to enter your system somehow. Attackers Inject them into your system by taking advantage of vulnerabilities present in your system. There are many kinds of …

What are Injection attacks? How to prevent Injection attacks? Read More »