It's not all our fault, security is hard
The IT folks at Target weren't stupid or lazy. They had actually done a lot of security work, but it wasn't enough. Modern enterprises are so large and complex that applying best security practices at all times and locations is just too much to ask.
But we all can do better. As a starting point, consider these six programming techniques, products and services which tend to minimize the most common of security problems.
We know that most attackers are lazy and looking for low-hanging fruit. The harder a target you make yourself, the less likely it is that you will be compromised.
- October 23