Organised crime, nation states and the rise of the “hacktivists”; these days there’s an increasing queue of people lining up and knocking on the door – or just breaking right through the door – of your websites. Whether it’s a targeted attack or indiscriminate automation, the stats show that most websites contain at least one serious security flaw and the average site contains hundreds of them!
Most of the time it’s the same flaws which are leaving our websites vulnerable and the mitigations are tried and tested – they’re just not well understood and consistently applied. This session is designed to take a look at what some of those key vulnerabilities are, some high profile cases of how they’ve been exploited and what you need to do to protect your site against them. This is a technology-agnostic presentation and the content is equally relevant across web frameworks.