Authored on: Sep 04, 2013
Many businesses today, from small retail organizations to large enterprises, are struggling with Web application security. Many organizations do not fully understand the risks of Web application attacks and arcane references like "OWASP Top 10" simply confuse them even more. With the prevalence of Web application hacks in the news, the top questions asked by many are "How likely are we to be hacked?" and "What can we do to defend ourselves?"
The answers may differ to some extent depending on the organization answering the questions, but there are a number of fundamental best practices that have stood the test of time. Some of the defenses have changed, however, and many new attack vectors are emerging too.
In this paper, we will explore the history of Web application attacks and look at how they're evolving today.