20 July 2018
Peter Roberts

Peter's lo-fi ramblings

Peter Roberts - UCL

224Posts 722,305Views 139Comments

The top 25 most dangerous programming errors

13 January 2009  |  2476 views  |  0

It's always worth taking note of anything from the SANS institute so it was interesting to see their latest announcement.

They've gathered consensus from experts in over 30 computer security organisations to release the list of the 25 most dangerous programming errors. These are the errors that lead to security bugs and that enable cyber espionage and cyber crime.

It's a bit of a shock, but most of these errors are not well understood by programmers. They're often not taught by computing courses and they are not tested for by organisations developing software for sale.

This is serious stuff. Just two of the errors led to more than 1.5 million web site security breaches during 2008. These sites were often compromised and in turn compromised the computers of people who visited those sites turning them into zombies for botnets.

Well - we're most likely talking Windows computers for the zombies, but any platform can be compromised by SQL injection attacks.


Scary stuff.

That list in full from SANS...

TagsSecurity

Comments: (0)

Comment on this story (membership required)

Latest posts from Peter

ATM? No mate, it's a cutting edge work of art

20 August 2010  |  5374 views  |  0 comments | recomends Recommends 1 GroupWhatever...

German robbers blow up bank

26 May 2010  |  4827 views  |  1 comments | recomends Recommends 0 GroupWhatever...

Hacking your bank with the help of social networks...

29 April 2010  |  5264 views  |  0 comments | recomends Recommends 0 TagsSecurity

Britons tech knowledge a little lacking?

15 January 2010  |  4787 views  |  1 comments | recomends Recommends 0 GroupWhatever...

Is it just me or has online banking got worse?

04 January 2010  |  5439 views  |  5 comments | recomends Recommends 0 Tags

Peter's profile

job title Moodle support
location London
member since 2008
Summary profile See full profile »
I was the technical lead on the Finextra family of web sites from 1999 to 2009. I'm at UCL these days supporting Moodle.

Peter's expertise

Member since 2006
224 posts139 comments

Who's commenting on Peter's posts