
July 2026 S M T W T F S 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31


It’s from a few years back. Is this still a vulnerability? Do banks still issue RFID cards? You can still find RFID credit card readers, so I wonder.
Security questions in the video start at 2:25
Like any other framework, the Rails app needs to be kept up to date. From time to time security issues are reported in the Rails app. Developers of Ruby applications should keep the OWASP Top 10 in mind. Ruby on Rails developers should test for:
Here is the Ruby on Rails Security Guide
Preventing SQLi in Ruby
Ruby on Rails has a built-in filter for special SQL characters, which will escape ’ , ” , NULL character and line breaks. Using Model.find(id) or Model.find_by_some thing(something) automatically applies this countermeasure.
Preventing XSS in Ruby
Rails provides helper methods to fend off XSS attacks.
Veracode can assist in Security Development Reviews. They also are the ones I borrowed this information from.
2014 is going to replace 2013 as the highest year on record for exposed records, according to Risk Based Security.
Mid-year 2014 at a Glance …
• There were 1331 incidents reported during the first six months of 2014 exposing 502 million records.
• Two Hacking incidents alone exposed a combined 318 million records.
• A single act of Fraud exposed 104 million records.
• The Business sector accounted for 54.9% of reported incidents, followed by Government (16.1%), Unknown (11.8%), Education (8.7%), and Medical (8.5%).
• The Business sector accounted for 64.3% of the number of records exposed, followed by Government (34.9%),
• 78.2% of reported incidents were the result of Hacking, which accounted for 78.7% of the exposed records.
• Fraud accounted for 20.7% of the exposed records, but represented just 2.1% of the reported incidents.
• Breaches involving U.S. entities accounted for 39.6% of the incidents and 74.3% of the exposed records.
• 61.7% of the incidents exposed between one and 1000 records.
• Ten incidents exposed more than one million records.
• Three First Half of 2014 incidents have secured a place on the Top 10 All Time Breach List.
• The number of reported incidents tracked by Risk Based Security has exceeded 12,700 exposing over 2.9 billion records.
You can view the 2014 Data Breach QuickView report here:
https://www.riskbasedsecurity.com/reports/2014-MidYearDataBreachQuickView.pdf
The Breach Report by Risk Based Security is a great enhancer to reports and presentations to business owners so they can invest in their Cyber Security teams.
It was revealed yesterday that after an investigation by the Nuclear Regulatory Commission (NRC), which oversees the US nuclear power grid, three incidents uncovered that hackers were able to access internal documents. One of the hacking incidents, involved emails sent to 215 NRC employees designed to steal their login details, around 12 employees ended up falling for it.
More here
My webhosting uses CloudFlare which adds a mitigating control when trying to access it with a Tor Browser. I actually didn’t know it did this.
I host with bluehost


Found on this page

I really love infographics and how they put things into perspective.