Man-In-The-Middle Attack On 2FA
Financial industry has been deploying two-factor Authentication tokens to Internet customers. The article highlights common pitfall in two-factor authentication implementation adopted by the industry against man-in-the-middle attack.

Be Careful What You Share
New forms of threats are faced by users of Web 2.0 applications. The article highlights real life examples of identity harvesting, and how user’s private information and corporate secret can leak out from these applications, if not protected properly.

Security Considerations for Rich Client Design
There is a common misconception that rich client applications are safe and immune to similar class of security attacks and threats that are happening to web- or internet-facing applications today. How safe are they, really? Can you imagine your company's private and confidential information such as ERP, finance, human resource and payroll transmitted ‘freely and openly’ over the network with little or no protection? And if ‘by mistake’ an employee can find out the CEO's salary? Or if it is possible to inject or make changes to payroll details which tie to auto-GIRO arrangements with bank?

CISCO Security TechByte 2009 Presentation Slide: Web Application Security Threats - Your Network Defense Can't Stop Them
The changing face of web-attacks - we look into hackers' new targets and behavior. We share and demonstrate this threatening new trend on internet hacking and their attack characteristics. Organization would realize despite layers of firewalls, IDS and IPS, how vulnerable they web applications are today. Organizations must know what are their options in defense.