Last week I did a second podcast interview with Patrick Gray of ITRadio.com.au. We primarily chatted about “The ethics of Web application security research, and liability concerns for consumers who bank online.” The message is starting to get out there about the new issues we face in webappsec with respect to disclosure and discovery. The game is definitely changing as people are becoming aware. Unfortunately there’s no easy answer to the challenges involved. We can only hope to continue participating in the dialog and hope that common sense practices prevails.
Also, I must have missed the Risky Business RSS feed the first time around, they have some good looking content available I’ll be trying to catch up on.