Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

JavaScript

Feroot

How to Operationalize Web Application Client-Side Security

Jul 9, 2021 By Ivan Tsarynny In Feroot

I might assume that you found this blog while conducting research on how to protect your business from skimming breaches. Let me guess… you just survived a Magecart-type, cross-site scripting (XSS), formjacking, skimming, or other client-side attacks? Now your CISO, CEO, or board are asking you to figure out how to ensure this doesn’t happen again?

Read Post

Security wins by starting out with Static Code Analysis for JavaScript projects

Jun 22, 2021 By Snyk In Snyk
Writing quality code is something all of us developers strive for, but it's not an easy task. Secure coding conventions have long been an aspiring goal for many developers, as they scour the web for best practices, and guidelines from OWASP and other resources. Some developers may have even tried using static code analysis to find security issues, like the use of linters (ESLint), only to find out that they are brittle and report on many false positives.
View Video
Feroot

Everything You Need to Know About Client-Side JavaScript Vulnerability Scanning

Jun 17, 2021 By Chris Kolling In Feroot

Welcome back to our five-part series on client-side security approaches. For those of you who are new to this series, there are five approaches to client-side security: In this blog I’m going to cover the use and limitations of vulnerability scanning for client-side security. Let’s start with the absolute basics. First, let’s take a deeper dive into a few key questions.

Read Post
appknox

Problematic JavaScript Vulnerabilities And Their Fixes Every Developer Should Know

May 19, 2021 By Patrick R In Appknox

A web developer’s ultimate goal is to not only develop a website or an app that is aesthetically and functionally stunning but highly secure as well. Cybersecurity is inevitable and no end-user would want to have an app that could breach or compromise their data security and integrity (no matter how useful the app is). With hackers and middlemen working on creative ways to explore vulnerabilities, it is on developers like us to take charge and be a step ahead of them.

Read Post
Snyk

5 ways to prevent code injection in JavaScript and Node.js

Apr 5, 2021 By Liran Tal In Snyk

Writing secure code in a way that prevents code injection might seem like an ordinary task, but there are many pitfalls along the way. For example, the fact that you (a developer) follow best security practices doesn’t mean that others are doing the same. You’re likely using open source packages in your application. How do you know if those were developed securely? What if insecure code like eval() exists there? Let’s dive into it.

Read Post
alienvault

JavaScript cybersecurity threats

Jan 26, 2021 By Kim Crawley In AT&T Cybersecurity

JavaScript is a very useful programming language. Netscape developers invented JavaScript in 1995, and it revolutionized the web. Before JavaScript, webpages could pretty much only contain text, images, and hyperlinks. JavaScript empowered web developers to make webpages interactive, dynamic rather than static. Think of picture menus that animated when your mouse cursor went over it, and applets that could give you your local weather forecast or tell you which web browser you’re using.

Read Post

Copyright © 2024 OpsMatters™. All rights reserved.