The new release of the OWASP Top 10 list is out for public comment from the Open Web Application Security Project, and while most of it remains the same there are a couple of new additions, focusing on protections for web applications and APIs.To make room for the new items, a couple of older ones were either removed or merged into new items.The fact that the list hasn’t changed much since its first release in 2003 is both good and bad, said Jeff Williams, CTO and co-founder at Contrast Security.
Maria Korolov is an award-winning tech journalist who covers cybersecurity, artificial intelligence and extended reality. She’s also a science fiction author and the editor and founder of MetaStellar, an online magazine of speculative fiction, and of Hypergrid Business, one of the world’s top virtual reality blogs. Contact her at maria@korolov.com to pitch articles or to hire her as writer, editor, or speaker at your event.
In an attempt to reduce online credit-card fraud, Visa U.S.A. in San Francisco announced 10 "commandments" for online merchants to guard its cardholders' information. And,…