Disclaimer: The opinions of the columnists are their own and not necessarily those of their employer.

David Rook

David Rook

David Rook is a Security Analyst for Realex Payments in Dublin, Ireland. David has over eight years of Information Technology experience five of which have been in Information Security roles. David is the creator of securityninja.blogspot.com and is a contributor to several OWASP projects including the code review guide. David has presented at IT security conferences and written articles for industry magazines on the topic of secure application development.

David has achieved multiple IT certifications which include CISSP, GCIH and MCT.

2008 – The Year of the SQL Injection Attack

December 8, 2008 – 6:00 am – For a long time now SQL Injection has been regarded as a potentially devastating attack vector. Attackers used SQL Injection to steal 40 million credit card numbers from Cardsystems in 2005. The rise in SQL Injection attacks has been rapid and has made this attack the one the hackers all want to…
Posted in Technical | Tagged , , , , , | Comments (0)

PCI DSS v1.2: Will the New Standard Miss the Mark?

November 17, 2008 – 6:00 am – With the imminent release of version 1.2 of the PCI standard I feel like the new version may miss the mark and not bring the improvements some people had hoped for. The PCI Council released a document detailing the changes that will be made to the standard and I feel several important security…
Posted in Compliance and Laws, Technical | Tagged , , , , , , , , | Comments (0)