In light of COVID-19 precaution measures, we remind that all ImmuniWeb products can be easily configured and safely paid online without any human contact or paperwork.

Community Edition
Total Tests:
This Week:
Today:
Stay in Touch

Weekly newsletter on AI, Application Security & Cybercrime


Your data will stay confidential Private and Confidential

ImmuniWeb > Security Blog > Page 24

ImmuniWeb Security Blog | Page 24

Why PCI DSS cannot replace common sense and holistic risk assessment
March 29, 2016 | Ilia Kolochenko for CSO

Cybersecurity compliance is not designed to eliminate data breaches or stop cybercrime.

Web Application Firewall: a must-have security control or an outdated technology?
March 10, 2016 | Ilia Kolochenko for CSO

Can a Web Application Firewall be an efficient security control for modern web applications?

90% of SSL VPNs use insecure or outdated encryption, putting your data at risk
February 23, 2016 | High-Tech Bridge Security Research

Have you ever thought how secure and reliable your SSL VPN? Probably you should.

Five rules to conduct a successful cybersecurity RFP
February 15, 2016 | Ilia Kolochenko for CSO

Five simple RFP rules to get the best price/quality ratio when buying cybersecurity products and services.

Google increase awareness of email TLS encryption
February 10, 2016 | High-Tech Bridge Security Research

Gmail users will now be able to see if a remote SMTP server has TLS encryption enabled.

Patching Complex Web Vulnerabilities Using ModSecurity WAF
February 9, 2016 | High-Tech Bridge Security Research

In this blog post we will demonstrate complicated examples of common web application vulnerabilities, and see how they can be mitigated with ModSecurity WAF.

Bypassing Bitrix WAF via tiny regexp error
February 3, 2016 | High-Tech Bridge Security Research

Bitrix24 is one of the first and most secure cross-platform corporate software with integrated WAF and RASP. Let's see how we can bypass them.

Facebook scandal or can bug bounties replace traditional web security?
January 11, 2016 | Ilia Kolochenko for CSO

Can crowd-sourcing approach to web security testing work for your corporate applications?

A Brief History of Spear Phishing
January 6, 2016 | Daniel Brecht (via InfoSec Institute)

Learn the best practices for developing a security awareness training program that is engaging. Engaging awareness programs have been shown to change more users’ behavior and ...

How to calculate ROI and justify your cybersecurity budget
December 16, 2015 | Ilia Kolochenko for CSO

If you speak with management about money – speak their language and you will definitely get what you need.

Five reasons why hackers easily get into corporate websites
December 15, 2015 | Ilia Kolochenko for CSO

Vulnerable web application is just one of the great gifts left for hackers, as it significantly reduces their time, cost and efforts to get into corporate network. Why companies ...

Can you trust SSL encryption of your email provider?
December 1, 2015 | High-Tech Bridge Security Research

Have you ever though how secure and reliable is your SSL/TLS connection to your email servers? A brief research about encryption implementation of the most popular free email ...

arrow left1920212223242526272829arrow right

This website uses cookies to provide you with a better surfing experience. To learn more, please visit our Privacy Policy. By continuing to use this website you consent to our use of cookies.

Ask a Question