Stories by Matthew Hackling

Application security testing

This article provides you with an overview of the current state of application security testing. Some of the challenges with application security testing include ensuring adequate coverage of black-box application testing, false negative issues with white box testing using automated source code analysis software and the lack of experience in the security industry with testing of client side applications.

Matthew Hackling | 24 Aug | Read more

Opinions: The sorry state of application security

Application security is currently one of the major battlegrounds in information security. Compromised web applications are ransacked for credit card numbers, personally identifiable information and is a major vector for spreading crimeware enabling criminals to defraud our banking institutions

Matthew Hackling | 11 Jul | Read more

Opinion: Getting the best out of your IT security auditor

Many IT managers and their teams treat an audit of their IT function as if it was a trip to the dentist for a root canal. More informed operators will realize that IT audit, particularly internal audit can assist them in gaining visibility with management of known and often ignored issues and securing funding and management commitment. The following are tips to help you get the most out of an IT audit of your IT security by avoid disruption, piecemeal activities and duplication of effort.

Matthew Hackling | 29 Jun | Read more