Web Security for Developers
Every website today is vulnerable to attack and a compromised website can ruin a company's reputation. Consider the Heartland Payment System data breach of 2008: the Heartland attackers made off with 130 million credit card numbers using a SQL injection attack to gain access to the web-servers that handled payment data.
Web Security for Developers covers everything a web developer needs to know about web security. Readers will learn who attackers are and what they have at their disposal, how the Internet and websites operate, and various ways websites get attacked. Author Malcolm McDonald explores common attacks like SQL injection and cross-site scripting, as well as common vulnerabilities like information leakage. The first half of the book describes security concepts every developer should know; the second half delves into the individual vulnerabilities themselves, offering real-world examples and code samples.