March 11th, 2010 by lhaasCompanies are not paying enough attention to security. Even if all the usual security mechanisms are in place, there is still no way to avoid all the danger. As this Register article states: “25 [programming] flaws are the cause of almost every major cyber attack in recent history.” One approach is to hold the developers responsible. Another is for companies to take the initiative to employ additional security (i.e. threatForensics).
Computer experts from some 30 organizations worldwide have once again compiled a list of the 25 most dangerous programming errors along with a novel way to prevent them: by drafting contracts that hold developers responsible when bugs creep into applications….
The 25 flaws are the cause of almost every major cyber attack in recent history, including the ones that recently struck Google and 33 other large companies, as well as breaches suffered by military systems and millions of small business and home users….
As a customer, you have the power to influence vendors to provide more secure products by letting them know that security is important to you,” the introduction to Tuesday’s list states.
via Experts reboot list of 25 most dangerous coding errors • The Register.
