Category Archives: XSS

My View on Security Seals for Websites

30 Jul 2011

This will be a quick post because the answer is very simple but many times businesses ask me if it is worth the money.

  • Great for business, it builds customer confidence (shouldn’t even matter much who the seal is issued by)
  • Does not mean the website is secure, many times have websites with “Mcafee Secure” seal (previously “Hacker Safe”) been vulnerable to XSS, SQLi etc.