Security & Development
Security is the degree of resistance to, or protection from, harm. It applies to any vulnerable and valuable asset, such as a person, dwelling, community, nation, or organization.
ISO 27002 ISO/IEC 27002:2013 gives guidelines for organizational information security standards and information security management practices including the selection, implementation and management of controls taking into consideration the organization’s information security risk environment(s). Download ISO 27002 (ZIP)ISO 27002 (PDF)
ISO 29147 This document provides requirements and recommendations to vendors on the disclosure of vulnerabilities in products and services. Vulnerability disclosure enables users to perform technical vulnerability management as specified in ISO/IEC 27002:2013, 12.6.1. Vulnerability disclosure helps users protect their systems and data, prioritize defensive investments, and better assess risk. The goal of vulnerability […]
XSS discovered on the retail website www.amazon.com .
Hi there,
We wanted to proactively reach out to you about a bug in our login system that we identified on Friday and resolved over the weekend.
Grappe de failles sur un des sites appartenant au Groupe La Poste.