Security Journey Blog

Here you’ll find the latest news, information, and trends in application security and compliance, plus tips and strategies for writing safer code and building a security culture.

Stay Up-to-Date on all Security Journey news and events.

Featured Articles

Secure Coding Training

Don't Fall for the Hacker Genius: Secure Coding is About Diligence, Not Brilliance

Many believe only brilliant minds can write secure code, but secure coding is primarily about discipline and understanding vulnerabilities. The most significant data breaches in history stemmed from preventable coding errors rather than genius hacking.

Compliance & Regulations

What You Need To Know About Secure Coding Training for PCI DSS v4.0 Requirements

The latest version of the Payment Card Industry Data Security Standard (PCI DSS), version 4.0, was released in March 2022. Although the requirements won't take effect until 2025, it's crucial to start preparing now.

Topics

Posts by Security Journey/HackEDU Team

Application Security

Jan 26, 2024

4 Reasons to Prioritize Application Security in 2024

As the threat landscape continues to expand, every business is vulnerable to potential attacks. For this reason, companies are investing heavily in security measures to combat attacks and breaches.

Security Journey News

Jan 25, 2024

Fast code or secure code? You can’t have both

Too many companies are still pushing out apps without thinking about security, according to new research.

Application Security

Jan 24, 2024

Securing the Future: Why Education is Key in Application Security

The International Day of Education celebrated on January 24th, serves as a powerful reminder of the transformative potential of knowledge. Let's focus on a crucial area where education can be a game-changer: application security.

Security Journey News

Jan 23, 2024

Security Journey Study reveals only 20 percent of organizations can confidently detect a vulnerability before an application is released

Despite stringent regulations and calls for ‘security by design’, organizations are still failing to equip teams with the knowledge to secure code.

Application Security

Jan 17, 2024

Bad Coding 101: Ensuring Your Website is XSS-Friendly

Follow our whimsical, step-by-step playbook and keep your website gleefully vulnerable for years to come.

Jan 11, 2024

Mitigating & Preventing Cross-Site Scripting (XSS) Vulnerabilities: An Example

In the digital world, trust is crucial for businesses to secure customer data and maintain loyalty. Cross-Site Scripting (XSS) is a silent threat that can turn a trusted platform into a launchpad for attackers, stealing sensitive information and spreading malware.

Jan 9, 2024

Understanding The 4 Types of Cross-Site Scripting (XSS) Vulnerabilities

Imagine you can see through the eyes of a bank manager without them knowing. You watch as they input the security code, open the gate, and unlock the vault brimming with cash.

Application Security Security Culture

Jan 2, 2024

Why Investing in Secure Coding Training is More Impactful Than Bug Bounty Programs

Bug bounty programs incentivize ethical hackers to identify and report vulnerabilities. However, prioritizing comprehensive developer training may be more impactful for application security in the long run.

Application Security

Dec 19, 2023

Security Champions are Key to Successful Threat Modeling Facilitation

In this article, we’ll dive into how Security Champions can be your company’s most effective threat modeling advocates and facilitators.

Application Security

Dec 14, 2023

5 Tips for Successful Cybersecurity Threat Modeling at Your Organization

With cybersecurity regularly getting the spotlight, focusing on securing our systems and data has become essential. One of the most efficient ways to start this is with threat modeling. This...

Application Security

Dec 12, 2023

How To Use Threat Modeling to Minimize the Attack Surface of Your Application

As the application security community grows, threat modeling tips are shared daily. But let’s go back to the basics – what is threat modeling? And how does it protect your application?

Application Security Security Culture

Dec 7, 2023

Make AppSec Training Accessible for Everyone with WCAG

Corporate training builds a competent workforce. AppSec training for secure software. Prioritize accessibility in training.

Security Journey Blog

Stay Up-to-Date on all Security Journey news and events.

Featured Articles

Don't Fall for the Hacker Genius: Secure Coding is About Diligence, Not Brilliance

What You Need To Know About Secure Coding Training for PCI DSS v4.0 Requirements

Posts by Security Journey/HackEDU Team

4 Reasons to Prioritize Application Security in 2024

Fast code or secure code? You can’t have both

Securing the Future: Why Education is Key in Application Security

Security Journey Study reveals only 20 percent of organizations can confidently detect a vulnerability before an application is released

Bad Coding 101: Ensuring Your Website is XSS-Friendly

Mitigating & Preventing Cross-Site Scripting (XSS) Vulnerabilities: An Example

Understanding The 4 Types of Cross-Site Scripting (XSS) Vulnerabilities

Why Investing in Secure Coding Training is More Impactful Than Bug Bounty Programs

Security Champions are Key to Successful Threat Modeling Facilitation

5 Tips for Successful Cybersecurity Threat Modeling at Your Organization

How To Use Threat Modeling to Minimize the Attack Surface of Your Application

Make AppSec Training Accessible for Everyone with WCAG

Contact Us

Contact Us

Contact Us