For those that love web application security data, WASC has just released their Web Application Security Statistics Report for 2007. Statistics were compiled from several companies, including Booz Allen Hamilton, BT, Cenzic, dblogic.it, HP, Positive Technologies, Veracode, and WhiteHat Security. In total, over 32,000 sites were analyzed, with roughly 70,000 vulnerabilities of different degrees of [...]

Vendor parties during Black Hat USA is always interesting, because the conference is in Las Vegas. Here is a list of vendors that I know of that are throwing parties this year at Black Hat USA 2008. Tuesday, August 5th Qualys Fortify Wednesday, August 6th Arbor Networks MANDIANT WASC / OWASP Thursday, August 7th Accuvant [...]

The WASC meetup was a few days ago at Jillian’s, and I had a blast. It was a great to have conversations with groups of like-minded people during the day, and not at a loud dark bar. Thanks to WhiteHat Security for sponsoring the event, and for the yummy food. Here are a few pictures [...]

Now that I have my RSA schedule in place, I have to figure out what I am doing in the evenings. So far I’ve been invited to seventeen (17!) vendor parties. In no particular order, the list of vendors are: Blue Coat, MessageLabs, SenSage, ESET, Ping Identity, Microsoft, Secure Computing, WASC, F-Secure, Voltage, Commtouch, Porter [...]