Get advance notice about December security updates

Read more Get advance notice about December security updates

The SDL Chronicles: Diverse Companies and Industries Share the ROI of Security Development Processes

Doug Cavit here.  I’m happy to announce that we have now released The SDL Chronicles.  We have been working with many outside institutions to help document their secure application development journey and what they learned.  Together, these stories make up The SDL Chronicles.  It is really interesting to me to see all these stories collectively rather than as individual pieces.  It is much easier now to see the similarities in what all of these institutions underwent in understanding the new challenging threat landscape. They then built consensus for not just doing the “quick fix” but for solving the problem systemically through a cultural shift. From this effort they were able to realize not only the benefits of enhanced security but also reaping direct benefits for doing the right thing in terms of more productivity and an excellent ROI.  All of these stories conclusively show that process and culture matters and while it may take some time and resources the net result is worth the investment.

Read more The SDL Chronicles: Diverse Companies and Industries Share the ROI of Security Development Processes

Take care with ransomware

Read more Take care with ransomware

Furthering Our Commitment to Online Safety

Read more Furthering Our Commitment to Online Safety

The SDL Chronicles: Free resources to help drive SDL adoption and realize solid return on investment

Read more The SDL Chronicles: Free resources to help drive SDL adoption and realize solid return on investment

Microsoft vs. the botnets

Read more Microsoft vs. the botnets

Microsoft’s Free Security Tools – A Deeper Look at XSS Attacks and Microsoft’s free Anti-Cross-Site Scripting Library

This article in our free security tools series focuses on the benefits of the Microsoft Anti-Cross-site Scripting Library (Anti-XSS).  Cross-site scripting (XSS) is an attack technique in which an attacker inserts malicious HTML and JavaScript into a vulnerable webpage, often in an effort to distribute malware or to steal sensitive information from the website or its visitors. 

Read more Microsoft’s Free Security Tools – A Deeper Look at XSS Attacks and Microsoft’s free Anti-Cross-Site Scripting Library

Shop online with care this holiday season

Read more Shop online with care this holiday season

Designing for High Availability in the Cloud

Read more Designing for High Availability in the Cloud

Time to [Wo]man Up: Get Girls Excited About Science & Technology

Read more Time to [Wo]man Up: Get Girls Excited About Science & Technology