Get short, timely messages from WhiteHat Security.

Twitter is a rich source of instantly updated information. It's easy to stay updated on an incredibly wide variety of topics. Join today and follow @whitehatsec.

Get updates via SMS by texting follow whitehatsec to 40404 in the United States
Codes for other countries

Country	Code	For customers of
Two-way (sending and receiving) short codes:
Australia	0198089488 Telstra
Canada	21212 (any)
United Kingdom	86444 Vodafone, Orange, 3, O2
Indonesia	89887 AXIS, 3, Telkomsel
Ireland	51210 O2
India	53000 Bharti Airtel, Videocon
Jordan	90903 Zain
New Zealand	8987 Vodafone, Telecom NZ
United States	40404 (any)

whitehatsec

New blog post: Session Cookie HttpOnly Flag Java blog.whitehatsec.com/session-cookie… #appsec less than 5 seconds ago via whitehatsec
Attend a WhiteHat Webinar: Top 10 Defenses for Website Security. For more INFO—bit.ly/KGmM8i to REGISTER—bit.ly/JbETG3 #AppSec about 2 hours ago via web
Great article from @jodywestby on how Boards view (or in this case don't view) their cybersecurity. Check it out here: onforb.es/KwFelz about 4 hours ago via TweetDeck
New blog post: List of firms willing and able to fix vulnerable code for you blog.whitehatsec.com/list-of-firms-… about 22 hours ago via whitehatsec
paulwhit The WebApp Security Frame's still relevant for mobile security. Hearing about experience applying guidance on iOS, Android, and WP. #SDC2012 7:30 AM May 16th via web Retweeted by whitehatsec and 2 others
bryansowen #SDC2012 Michael Howard on dev education: biggest delta is 0 to awareness | don't need all dev to be security experts (you'll never ship) 8:58 AM May 15th via web Retweeted by whitehatsec and 2 others
The middle ground is vuln testing & WAF until source code is fixed RT @my4ng3l: WAF Wars? -> A WAF should be...http://t.co/y8gOYKld #AppSec 12:41 PM May 14th via TweetDeck
@cb3geek Hi Chris, could you DM us your email and we'll get things sorted! 12:30 PM May 14th via TweetDeck in reply to cb3geek
Attend a WhiteHat Webinar: Top 10 Defenses for Website Security. For more INFO—bit.ly/KGmM8i to REGISTER—bit.ly/JbETG3 #appsec 9:36 AM May 14th via web
Why Web Application Firewalls Are Not the Enemy of the SDLC: securityweek.com/code-wars-why-… < There's definitely room for secure SDLC and WAFs #appsec 12:54 PM May 11th via TweetDeck
New blog post: Clickjacking Prevention in Java blog.whitehatsec.com/clickjacking-p… #appsec 4:58 PM May 10th via whitehatsec
matt_presson "MIME Sniffing: feature or vulnerability?" Must read for all #AppSec pentesters bit.ly/JhElu7 6:42 AM May 10th via MetroTwit Retweeted by whitehatsec and 2 others
The government scaring the 'bejeezus' out of CEOs to get them on the security train? n.pr/LMWgfK - Security shouldn't be scary! 2:59 PM May 9th via TweetDeck
The US & China together on cybersecurity: on.wsj.com/IMuz4J - After MSFT's leak in March, what're your thoughts about the collaboration? 12:01 PM May 8th via TweetDeck
Our CEO Stephanie Fohn met with @InfosecurityMag at #InfoSec12 to talk about #appsec in enterprise . Check it out! bit.ly/J9jYmC 11:55 AM May 7th via TweetDeck
Looking to be a little more 'stealthy' online? See what @jeremiahg has to say on internet privacy in @nytimes: nyti.ms/J1CqK1 11:06 AM May 4th via TweetDeck
@tsamson_IW on #CISPA & cloud: bit.ly/JlPveg. but are we too vested in cloud to drop it for privacy though? #therehastobeabetterway 10:46 AM Apr 30th via TweetDeck
InfosecurityMag Stephanie Fohn of @whitehatsec talks about web application security & future trends filmed live at #Infosec12 bit.ly/IqT7Ne 7:30 AM Apr 26th via web Retweeted by whitehatsec and 3 others
@jeremiah featured in "Website Vulnerabilities Fall, but Hackers Become More Skilled" via @Computerworld—bit.ly/HPX7Zl #appsec 3:51 PM Apr 24th via web
@jeremiahg featured in "Will We Trade Freedom for Application Security?" via @networkworld—bit.ly/HJfbCd #appsec 8:24 AM Apr 23rd via web