Security Journey Blog
Here you’ll find the latest news, information, and trends in application security and compliance, plus tips and strategies for writing safer code and building a security culture.
Stay Up-to-Date on all Security Journey news and events.
Featured Articles
Don't Fall for the Hacker Genius: Secure Coding is About Diligence, Not Brilliance
What You Need To Know About Secure Coding Training for PCI DSS v4.0 Requirements
Posts by Security Journey/HackEDU Team
Drupalgeddon2 (CVE-2018-7600) Vulnerability
Apache Struts 2 Namespace (CVE-2018-11776) Vulnerability
2.3
to 2.3.34
and 2.5
to 2.5.16
of Apache Struts 2, one of the most used Java-based web application frameworks.
How Do You Select Security Champions?
Security champions should be an integral part of your security team. When this position was first introduced five or so years ago as part of the cybersecurity structure, the security champion was...
HackEDU Partners with HackerOne to Expand Hacker101 Training
Software Developer Accountability
Public Vulnerability Sandboxes
HackEDU Platform Tutorial
Top 6 Application Security Must Dos with Limited Resources
The vast majority of application security teams are under resourced. The ideal is that application security teams will scale with development teams, but this rarely happens. Given this disadvantage,...
OWASP Top 10 Mini Series - Command Injection Cheat Sheet
OWASP Top 10 Mini Series - SQL Injection
When Should I Start Secure Development Training?
I know what it is like to have competing priorities. When I was the Chief Information Security Officer at AirMap, there was a constant pressure to build product, and security was always fighting for...