Published at LXer:
Automated testing has its place in detecting IT security weaknesses but it cannot replace manual testing. “Amazingly, even a decade’s old vulnerability like SQL injection still surprises most clients,” adds Jensen. “I think most of the surprises come from the exploitation of seemingly innocuous functionality that results in a devastating vulnerability.”
Read More...