Critical_Reads Archives | Chronicles of a CISO

The Top Five Web Application Authentication Vulnerabilities We Find

Jul 27, 2019RSS FeedCritical_Reads, RSSCritical_Reads, Information Security

One of the most important parts of a web application is the authentication mechanism, which secures the site and also creates boundaries for each user account. However, during my years of testing web applications, it’s still very common to find authentication mechanisms with vulnerabilities. I currently work as a principal penetration tester on Veracode’s MPT…

John MasseriniFollow

John Masserini @John_Masserini·

Today’s Daily News | Chronicles of a CISO
Nation-States Go All-In on Mobile Malware | Farewell, Dear Password | Container Security Is Falling Behind Container Deployments | 4 Remotely Exploitable iOS Flaws

https://t.co/Skqe3H5vGM

#InformationSecurity #Quantum #Cybersecurity

Reply on Twitter 1156535230179790848 Retweet on Twitter 1156535230179790848 Like on Twitter 1156535230179790848 Twitter 1156535230179790848

John Masserini @John_Masserini·

30 Jul

Today’s Daily News | Chronicles of a CISO
Amazon's role in the Capital One breach | DMARC Adoption Nonexistent | Business Email Compromise Continues to Plague | ProtonMail Warns of Phishing Attacks

https://t.co/Skqe3H5vGM

#InformationSecurity #Quantum #Cybersecurity #Phishing

Reply on Twitter 1156171582777253888 Retweet on Twitter 11561715827772538881 Like on Twitter 1156171582777253888 Twitter 1156171582777253888

John Masserini @John_Masserini·

29 Jul

All these flaws can be exploited by an unauthenticated, remote attacker just by sending a specially crafted TCP packet to an affected device #vulnerability
#InformationSecurity
#CyberSecurity #VxWorks #Urgent11
https://t.co/1OHNlzKIpp

Reply on Twitter 1155871416060973057 Retweet on Twitter 11558714160609730572 Like on Twitter 1155871416060973057 Twitter 1155871416060973057

John Masserini @John_Masserini·

29 Jul

For those vendors who continue to send me attachments in LinkedIn, this is why I immediately delete your messages..

https://t.co/WUDlky2fwl #InformationSecurity #Cybersecurity #APT

Reply on Twitter 1155834611441831936 Retweet on Twitter 11558346114418319363 Like on Twitter 11558346114418319361 Twitter 1155834611441831936

John Masserini @John_Masserini·

29 Jul

Today’s Daily News | Chronicles of a CISO

https://t.co/Skqe3H5vGM

#InformationSecurity #Quantum #Cybersecurity

Reply on Twitter 1155809948871344128 Retweet on Twitter 11558099488713441281 Like on Twitter 1155809948871344128 Twitter 1155809948871344128

Retweet on Twitter John Masserini Retweeted

🕵️‍♂️Ian☠️@z3roTrust·

29 Jul

Can I get a "U," "A," "C"? Read "Bypassing Windows User Account Control: Back For More" - via @z3roTrust #Microsoft #Windows10 #Hacking #Infosec #Cybersecurity https://t.co/L1o2HRAQXv

Reply on Twitter 1155776992198955008 Retweet on Twitter 11557769921989550081 Like on Twitter 11557769921989550081 Twitter 1155776992198955008

John Masserini @John_Masserini·

27 Jul

Today’s Daily News | Chronicles of a CISO

https://t.co/Skqe3H5vGM

#InformationSecurity #Quantum #Cybersecurity

Reply on Twitter 1155079133715718144 Retweet on Twitter 11550791337157181441 Like on Twitter 1155079133715718144 Twitter 1155079133715718144

John Masserini @John_Masserini·

26 Jul

This so reminds me of the help desk mantra.. 'Just reboot it and you'll be fine..' - although rebooting an airplane seems a bit more daunting. #Airbus #Software

https://t.co/UZ2o6siyzY

Reply on Twitter 1154733355008745478 Retweet on Twitter 1154733355008745478 Like on Twitter 1154733355008745478 Twitter 1154733355008745478

John Masserini @John_Masserini·

26 Jul

Today’s Daily News | Chronicles of a CISO

https://t.co/Skqe3H5vGM

#InformationSecurity #Quantum #Cybersecurity

Reply on Twitter 1154723037150924800 Retweet on Twitter 11547230371509248002 Like on Twitter 11547230371509248002 Twitter 1154723037150924800

John Masserini @John_Masserini·

25 Jul

Today’s Daily News | Chronicles of a CISO

https://t.co/Skqe3GNUic #InformationSecurity #Cybersecurity #Quantum

Reply on Twitter 1154369456828665856 Retweet on Twitter 11543694568286658561 Like on Twitter 11543694568286658561 Twitter 1154369456828665856