My interesting links email is something I send out to my colleagues, well, when I’ve found stuff of interest. This one is quite old (December 2015).
- A hacked site that would’ve been entirely safe if it used a CSP: http://arstechnica.com/security/2015/11/hey-readers-digest-your-site-has-been-attacking-visitors-for-days/ – We should make sure we use these. Just sayin’.
- Azure have added SQL Database Threat Detection… http://www.troyhunt.com/2015/12/the-ongoing-scourge-that-is-sql.html Worth a read. The short form – Azure can try to detect SQL injection attacks. It won’t stop it, but it should detect it.
- This is a headline I never thought I’d see: http://arstechnica.com/security/2015/12/internet-connected-hello-barbie-doll-gets-bitten-by-nasty-poodle-crypto-bug/
Idle thought for the day – should we include in our sites/pages details of ‘how to contact us if you find a vulnerability’?