It’s really, really, really easy not to like Weev, the Internet troll who was sentenced to 41 months in prison for manipulating AT&T’s web site to reveal the identity of iPad early adopters. But his conviction creates more problems than it solves.

The folks over at backgroundcheck.org have released this great infographic on the topic of healthcare organization breaches. The statistics outline in the report are nothing short of stunning highlighted by the fact that 94% of polled healthcare organizations had at least one data breach in the past two years.

Our Cross-site Scripting Cheat Sheet is a FREE resource and provides a summary of everything you need to know about the topic. We know that security parameters are ever changing and we’re pleased to announced that we’ve updated our Cheat Sheet to be current and fresh.

Three decades of debate about the ‘security’ of software hasn’t done much to make it more secure. Maybe it’s time for a change in nomenclature.

Let’s face it: we routinely underestimate the effect that language has on our perception of the world. This makes sense – we all like to think of ourselves as logical beings, swayed by indisputable facts and direct observations of the world, not words, images and fancy-pants rhetoric.

I’ve been attending the Search Marketing Expo in San Jose this week keeping up with all the latest and greatest in internet marketing. Monday’s keynote was a presentation from Google’s Matt Cutts and Bing’s Duane Forrester in which they ran through examples of all the things they’ve seen through their “excellent adventures” in working for search engines (it was a Bill and Ted themed presentation).

Now that the ink has dried on President Obama’s Executive Order on cybersecurity, a controversy is brewing about whether software products like Windows should be considered critical infrastructure. Do we even need to ask?!

With RSA all rounded up the only thing left for us is to announce the final two winners of our #NoSOUP photo contest and get their prizes out to them.

Our photo booth with Larry Thomas of Seinfeld was a great success with over 1,000 photos taken with him over the course of the week! Nearly 100 of you decided to participate in our #NoSOUP contest through either Twitter, Facebook or emailing us your photos (you can see the full list of email entries on our official #NoSOUP contest page.)

As you may have noticed our team has been out in San Francisco this week enjoying and working the RSA Conference. Larry Thomas from Seinfeld, “the S.O.U.P. Nazi” has made a big splash and folks have been lining up by the hundreds to get their photos taken with him. We thought this might be the case which is why we built our contest around Larry and made it as simple as sharing your photo with him.

Analysis of 25 years of CVSS vulnerability data from the firm Sourcefire finds that buffer overflows are the most common – and the most commonly meddlesome – problem in the software world. Why?

You’ve probably already heard that our RSA Booth #1342 will be featuring a photo op with Larry Thomas from Seinfeld. Fans of the show will undoubtedly remember his immensely popular character the Soup Nazi as he was one of the few, perhaps only guest character that stole the show from it’s mainstays.

But why did we commission him to join us? Simple. We’re out to eliminate S.O.U.P., no not the chicken noodle sort but rather Software of Unknown Pedigree!

With RSA Conference kicking off Monday the offices here are abuzz with activity. In addition to our Booth (#1342) we will also have a few other notable attractions for attendees. Between Conference Sessions, our ‘Wicked Smaaht’ Security Talks, a photo booth featuring Larry Thomas from Seinfeld and an iOS app available for download there’s something for everyone this year!

There are lots of interesting conclusions to be drawn from the recent targeted hacks of Facebook, Twitter and Apple. Chief among them: application developers are on the list of targets for sophisticated cyber criminal groups.

Like many of my industry peers, my first job was in the telecom industry developing software. Back in the day, we used telnet to remotely login to the work station of our choice and then go on about our day writing code and sipping coffee. Software security was not part of our vocabulary or our corporate culture.

No, the dead aren’t rising from their graves to attack the living. But that doesn’t mean that there’s not plenty of blame to go around in the recent hack of the U.S.’s Emergency Alerting Service (EAS).