A new cybersecurity cookie attribute has been introduced to help developers avoid exploits such as cross-site request forgery (CSRF) attacks. The SameSite attribute restricts when cookies are sent to third-party servers. Using this attribute, developers can keep customer data safer in their web development applications. | Read More →

Internet Domain Name (IDN) homographic attacks take advantage of different Unicode values used to display letters in various languages. For instance, the letter "a" looks the same in English as it does in Russian. However, different binary values represent each letter. Using letters that look similar, an attacker can trick users into accessing malicious domains used for phishing. This attack requires no email address spoofing and very little social engineering, but it can lead to a major corporate data breach. | Read More →

Having an API is a great marketing tool for site owners. Developers pay a subscription fee to use your data in their own application projects. These third-party web development projects can boost your site's brand visibility, but API owners must take precautions to protect user data. OAuth can be used to work with proper authentication and authorization standards for data privacy. | Read More →

Application pools are a cybersecurity and web hosting component of Microsoft Windows IIS (Internet Information Services). They help Windows administrators work with multiple websites hosted on the same server and separate sites that need different CPU and memory resource management. Whether you host a website on an Azure virtual machine running the Windows server operating system or use cloud hosting on Windows-based hosts, you'll need to configure IIS and application pools. | Read More →

A disaster recovery plan has several components, but backups are one of the most critical for business continuity. A good backup plan ensures that all data is secured in case of a compromise, physical theft or a natural disaster. When designing a new plan, it's important to have several key elements and understand how it ties into disaster recovery. | Read More →

OAuth is a standard for allowing users to authorize a third-party application to access their data. It's a cybersecurity standard for authentication and authorization using credentials stored on an API. For instance, when you log into a site using your Google credentials, you use OAuth to let Google know that you give permissions to a third-party to access components of your Google account. If you plan to create your own internal API for developers, you will need to know OAuth standards to create an authorization and permission workflow. | Read More →