The web becomes a more threatening place each and every day. This is especially evident due to the uptick in legitimate websites being compromised to push malware. ScanLife reported increase of over 400 percent last month.

So, what is going to help alleviate these threats? I’m pushing for more secure code. Microsoft issued a security advisory last week that offered companies free tools to help scan for SQL injection vulnerabilities.

Another area that’s helping to secure code is the new PCI Data Security Standard section 6.6 guidelines that just went into effect. Under the new rules, merchants need to implement a web application firewall and/or conduct a complete code review by a 3rd party.

It is vital that secure code become a standard in all development. Let’s hope these extra steps by PCI and additional help from companies like Microsoft can give the industry the nudging they need.

This entry was posted on Wednesday, July 2nd, 2008 at 1:55 pm by Tim Donaworth and is filed under general. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.