The easiest avenue into a site I’ve been writing an email web application recently and I have been thinking about making the forgotten password feature more secure as it is often the easiest avenue for an attacker to get into your web site. The major issue with these features is information disclosure, for example if […]

Swordfish, yeah right! The glorified media definition of a hacker is wrong; a hacker isn’t Swordfish [1]. A hacker enjoys what he/she does and is motivated by the willingness to learn not for profit. It is important to identify if you have a hacker in your business because you need to approach them in a […]