A guide with all the techniques to test and protect CORS implementations.
How to prevent tapjacking attacks on hybrid applications developed with Cordova in less than a minute.
Account lockout could be a solution worse than the problem. Some practical advices to protect an app without introducing DoS.
When trusting default configuration lead to security issues.