A6 – Sensitive Data Exposure

Data exposure deals with revelation of information or information disclosure. The OWASP document defines it saying that:

"Many web applications do not properly protect sensitive data, such as credit cards, tax IDs, and authentication credentials. Attackers may steal or modify such weakly protected data to conduct credit card fraud, identity theft, or other crimes. Sensitive data deserves extra protection such as encryption at rest or in transit, as well as special precautions when exchanged with the browser."

This topic relates to the disclosure of sensitive information when such information can be used not just in a cyber attack, but also in certain types of theft, such as what might happen when health records, credentials, ...

Get Mastering C# and .NET Framework now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Mastering C# and .NET Framework by Marino Posadas

A6 – Sensitive Data Exposure

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly