security Archives

stackoverflowknows October 11, 2021

Shift to remote work prompted more cybersecurity questions than any breach

For this edition of Stack Overflow Knows, we did a deep dive into cybersecurity topics across Stack Overflow and Stack Exchange sites to spotlight trends and reflect on how conversations are evolving within the developer and technical community.

David Gibson Senior Data Analyst

podcast August 24, 2021

Podcast 369: Passwords are dead! Long live the new authentication flows.

Magic links get you in the door safer than passwords.

Ryan Donovan

company January 25, 2021

A deeper dive into our May 2019 security incident

We take a detailed look at a hacking incident that gave a user unauthorized access to our code and data.

Dean Ward Principal Developer - Former

code-for-a-living December 14, 2020

Security considerations for OTA software updates for IoT gateway devices

In order to respond to threats, device designers must remotely update, which if implemented poorly, can provide another vector for attacks. In this post, dig into specifics related specifically to the over-the-air (OTA) software update framework in an enterprise setting.

Drew Moseley

podcast August 4, 2020

Podcast 257: a few of our favorite haxx

From the Samy Worm to WannaCry, we chat about a decade worth of security snafus.

Ben Popper Director of Content

code-for-a-living July 24, 2020

The perils of impersonation tooling

On Wednesday, July 15th, a bitcoin scam hit Twitter. Celebrities such as Elon Musk, Barack Obama, and Bill Gates appeared to tweet out a message that promised to return double the amount of bitcoin sent to a specific wallet. It wasn’t a spontaneous and simultaneous act of generosity, it was a scam. At this point,…

Ryan Donovan

code-for-a-living June 25, 2020

How does spam protection work on Stack Exchange?

If you put a textbox on the Internet, someone will put spam in it. If you put a textbox on a site that gets millions of hits a day, lots of someones will put lots of spam in it. So Stack Exchange uses multiple layers to block all the spam coming in.

ArtOfCode

He's about to steal some code and write a game changing application.

code-for-a-living May 20, 2020

Good coders borrow, great coders steal

Copying and pasting can be dangerous, but then again, so can many aspects of software development when done incautiously. In this post, I’ll take a look at what code copying actually means for software development, what good code theft means, and the pitfalls of copying badly.

Ryan Donovan

code-for-a-living March 23, 2020

Defending yourself against coronavirus scams

Like a lot of you, I’m pretty glued to the news these days, trying to balance unease with calm realism. In trying times like these, we look for resources for critical information and ways to help people less fortunate than us. That’s the good news; the better angels of our nature see difficult situations—fires in…

Ryan Donovan

code-for-a-living March 18, 2020

How to develop a defensive plan for your open-source software project

Open source software is becoming more and more popular. Here's how you can create a plan to ensure that your open source implementation is secure as well as effective.

Sam Bocetta

code-for-a-living December 2, 2019

Preventing the Top Security Weaknesses Found in Stack Overflow Code Snippets

Last week, we told you about research that found a number of security vulnerabilities in code snippets in Stack Overflow answers, and how some of those flaws had migrated into actual, real-live Github projects. Today, we’re following up on the top eight error types that research highlighted and suggesting ways to avoid making the same mistakes.

Ryan Donovan