News Stay informed about the latest enterprise technology news and product updates.

Podcast: Expert sees rise in sophisticated attacks

In this edition of Security Wire Weekly, Andreas Wiegenstein, chief technology officer of Virtual Forge discusses why application security attacks are becomming more sophisticated.



 Andreas Wiegenstein, chief technology officer of Virtual Forge discusses the top application security threats with News Editor Robert Westervelt. Also, a recap of the week's news, including Microsoft's plan to open up Sender ID and infected iPods threatening corporate networks. Listen on your PC or download to your favorite mobile device.



  Virtual Forge's Andreas Wiegenstein:  
  • Download the podcast here:Wiegenstein recently highlighted the top five application threats and countermeasures at SAP TechEd '06 in Las Vegas.


  Program highlights:  
  • (:40) Microsoft will make its Sender ID framework freely available under its Open Specification Promise Program.


  • (2:32) Let's focus on your presentation at SAP TechEd in Las Vegas. You said that Web applications, particularly custom developed Web applications are at risk. Can you explain?


  • (5:04) Do these threats go beyond SAP NetWeaver? Do they affect all developers building Web-based applications?


  • (7:41) Are attacks becoming more sophisticated?


  • (9:26) Are Ajax attacks on the rise as more developers use the language?


  • (11:06) Developers are failing to build-in security when building an application?


  • (12:05) Why are developers failing to build-in security? Does it take too long? Does it delay projects?


  • (13:21) Infected iPods could cause trouble for corporate networks.



      Program Links:  
  • Ajax security: How to prevent exploits in five steps: While Ajax can make your Web pages feel faster and more responsive, this Internet-based service, like many Web development tools, has its security concerns. In this tip, expert Michael Cobb examines how Ajax works, how hackers can exploit it.


  • Microsoft opens Sender ID, announces plans to share virus samples: The software giant releases the email verification plan under its Open Specification Promise program, drawing praise from security experts.


  • Malware taunts storage and caching servers: Malware is being found on storage and caching servers and a new wave of sophisticated Web 2.0 attacks are among the trends highlighted in a report from security vendor Finjan Inc.


  • SAP bolsters developer community to prep for SOA: SAP is taking steps to open its architecture to developers and independent software makers to get feedback on its products and create a fast system to develop Web services.


  • Avoid phishing with e-mail authentication: Sender ID: Learn how Sender ID provides e-mail authentication and helps organizations avoid phishing.


  • Information Security podcasts: Visit SearchSecurity's podcast archive.


Dig Deeper on Web application and API security best practices

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.