Input Validation explained by Red Hat.

Red Hat Secure Programming Series 1: Input Validation (part 1 of 2) by rhenterpriselinux on YouTube

Haven't heard about this before.

Open Source two factor authentication suite | dynalogin on Dynalogin

The dynalogin project was started in 2010 by Daniel Pocock. Pocock's professional experience includes engineering secure connectivity solutions for organisations like UBS in Zurich, Switzerland. The dynalogin project has been shared openly from the beginning as GPL-licensed free software in the interest of promoting a more secure Internet for everybody.

The SVN repository seems to be unaffected, but you should check your installations.

Backdoor found in Piwik analytics software - Update - The H Open: News and Features on H-online

The Piwik web analytics software's server appears to have been compromised and has recently been serving a manipulated version of the software which gives attackers access to the server and surrounding system

Very amusing to read these short security wisdoms.

ISC Diary | Security 101 : Security Basics in 140 Characters Or Less on Sans

It was one of THOSE gigs: an internal penetration test against a client that, considering the amount of personal information they held on their customers, should have been well prepared. And yet, we went from "you-can-plug-your-laptop-in-over-there" to "Domain Admin" in... well, let's just say a "shockingly small" number of hours. And it just went downhill from there...

Last night I have read the article "Key-based authentication with SSH and VNC" from the ADMIN Magazin Special "Tricks with SSL and SSH" by James Stanger. When I was reading this article I was totally loosing faith in this magazine or my knowledge about SSH, public/private keys and understanding of security in IT. Also after reading it for a 2nd time now I feel totally lost.
Is he really a security consultant? I couldn't believe what I have read or am I totally misunderstanding his points?

5 days ago there was again a security update for #OpenX Open and I heard nothing about it. Just found it in coincidence now when I was cleaning up some things. That is really annoying with OpenX.