I work with many startups and sometimes I want access to their EC2 instances on AWS. When I ask, often people send me a private key (a PEM file) to login! This distresses me to no end. Guys, didn't you know that a private key is, ahem, private? When ...Read more

Are you already using the Content Security Policy HTTP header to protect your website from XSS and other code injections? Would be interested in learning about your experiences with CSP.

Learn about the latest malware threat - fileless malware!

ouch! [OneLogin] warned once again that the malefactor, who was able to rifle through OneLogin's infrastructure for seven hours, may have been able to decrypt customer data.

Learn about Cross-Site Scripting (XSS) in Vue.js and how to protect yourself


This node is intended to be a place for all security related discussions.


Security doesn't have any managers, become a manager and help drive this community on Hashnode.

Manage this node

loading ...