Security Journey Blog

Here you’ll find the latest news, information, and trends in application security and compliance, plus tips and strategies for writing safer code and building a security culture.

Stay Up-to-Date on all Security Journey news and events.

Featured Articles

Secure Coding Training

Don't Fall for the Hacker Genius: Secure Coding is About Diligence, Not Brilliance

Many believe only brilliant minds can write secure code, but secure coding is primarily about discipline and understanding vulnerabilities. The most significant data breaches in history stemmed from preventable coding errors rather than genius hacking.

Compliance & Regulations

What You Need To Know About Secure Coding Training for PCI DSS v4.0 Requirements

The latest version of the Payment Card Industry Data Security Standard (PCI DSS), version 4.0, was released in March 2022. Although the requirements won't take effect until 2025, it's crucial to start preparing now.

Topics

Learn About ‘Application Security (9)’

Secure Coding Training Application Security

Dec 26, 2019

OWASP Top 10 Mini Series - Command Injection Cheat Sheet

Command injection is similar to SQL injection, but instead of injecting into a SQL query, you are injecting a command into the Operating System. User data can be input to alter the intent of the command that is being executed.

Secure Coding Training Application Security

Dec 26, 2019

OWASP Top 10 Mini Series - SQL Injection

SQL Injection vulnerability allows attackers to alter database queries to take actions other than what the developer intended. This could allow an attacker to bypass authentication, steal data, alter site and database contents, or even destroy your database.

Application Security

Dec 26, 2019

When Should I Launch a Bug Bounty Program?

Bug bounty programs - where individuals can receive recognition and compensation for reporting security vulnerabilities - are useful for organizations, especially when developing an application security program.

Application Security

Oct 10, 2019

How do you start in cybersecurity?

Here are five things that have impacted me in my career, and helped me to grow both as a security person and a human being.

Application Security

Mar 20, 2019

How developers can take the lead on security

This post was written by Chris Romeo during his tenure at Security Journey.

On the Internet, detection and reporting of vulnerabilities in software is a daily occurrence. Where do those...

Application Security

Sep 17, 2018

4 ways to engage developers who couldn't care less about security

This post was written by Chris Romeo during his tenure at Security Journey.

You would think that there is not a single developer on earth who has avoided the impact of a data breach or security...

Application Security

Jun 27, 2018

6 application security lessons every team should study

This post was written by Chris Romeo during his tenure at Security Journey.

When you build a skyscraper, how important is the foundation? It's crucial. Built on a weak foundation, even the most...

Security Journey Blog

Stay Up-to-Date on all Security Journey news and events.

Featured Articles

Don't Fall for the Hacker Genius: Secure Coding is About Diligence, Not Brilliance

What You Need To Know About Secure Coding Training for PCI DSS v4.0 Requirements

Learn About ‘Application Security (9)’

OWASP Top 10 Mini Series - Command Injection Cheat Sheet

OWASP Top 10 Mini Series - SQL Injection

When Should I Launch a Bug Bounty Program?

How do you start in cybersecurity?

How developers can take the lead on security

4 ways to engage developers who couldn't care less about security

6 application security lessons every team should study

Contact Us

Contact Us

Contact Us