Encripto is celebrating its 10th anniversary on the 25th of November. The company was founded in 2010 by security expert Juan J. Güelfo. Since the beginning, Encripto has been a niche company specialized in information security, and we believe in a more secure IT-world. Success never comes in a day. It requires strong [...]
In our previous post, we covered what cyber security is and why it is important. Also, we gave you some tips to increase cyber security and reduce risk of cyber crime as a company. In this post, we will try to answer the next question: What can you do to improve your cyber [...]
Since 2010, National Security Month is celebrated in October in Norway. During this month, good security practices are promoted. In this blog post, we are going to have a look at what cyber security is and why it is important in our lives. Also, we will give you some tips to improve it. [...]
Security testing of any application or system is about searching for its potential weaknesses and vulnerabilities, which might result in a security breach. In this blog post, we are going to have a look at why and when you should plan your security test.Encripto delivers two main kinds of security tests:Application testing. Encripto has [...]
The OWASP Mobile Security Project is a centralized resource intended to give developers and security teams the resources they need to build and maintain secure mobile applications. Through the project, their goal is to classify mobile security risks and provide developmental controls to reduce their impact or likelihood of exploitation.The project recently published the OWASP [...]
Breaches happen every day. Is your business prepared? This blog post is based on OWASP Top 10 Guidance for Incident Response, and it will provide a proactive approach to incident response planning.A security incident is an identified occurrence or weakness indicating a possible breach of security policies or failure of safeguards, or a previously unknown [...]
Because the media mostly focus on bigger data breaches, small business owners may assume that hackers only pursue companies with huge amounts of data, and that their own company would be of little interest to hackers. In reality, this is simply not true. Small Businesses - An Interesting TargetSmall businesses store valuable data [...]
The OWASP Top 10 is a powerful awareness document for web application security. It represents a broad consensus about the most critical security risks to web applications.A primary aim of the OWASP Top 10 is to educate developers, designers, architects, managers, and organizations about the consequences of the most common and most important web [...]
This blog post is based on OWASP Transport Layer Protection Cheat Sheet, and it will provide simple rules to follow when implementing transport layer protection for an application.Although the concept of TLS is known to many, the actual details and security specific decisions of implementation are often poorly understood and frequently result in insecure [...]
As software developers author the code that makes up a web application, they need to embrace and practice a wide variety of secure coding techniques.All tiers of a web application, the user interface, the business logic, the controller, the database code and more – all need to be developed with security in mind. [...]