Do not send sensitive data via email

Sending sensitive data via email is a bad idea for several reasons. We might be inclined to think that we can first encrypt our documents before sending them, but we soon realize that we have another problem – how do we send the password to our recipient? Of course, we can’t send the password via email. What some companies have done is to use a password that is known to the customer, like their date of birth or account number and even include the format for the password....

October 10, 2021 · 2 min · Jesstern Rays

Security tools and resources

Learn Awesome AppSec - curated list of resources for learning about application security Damn Vulnerable Web App (DVWA) - a vulnerable web application used for security training OWASP Juice Shop - a vulnerable web application used for security training OWASP Node Goat - a vulnerable web application used for security training with tutorials XCS100: Introduction to Web Security - a free introductory course to web security by Stanford University Offensive Security News Insecure....

1 min · Jesstern Rays