Jun 16, 2019 Application Security This Week for June 16 Happy Father's Day! Great writeup by Rapid7 about security-focused HTTP headers. https://blog.rapid7.com/2019/05/30/hidden-helpers-security-focused-http-headers/?utm_medium=twitter&utm_content=http-headers&CS=twitter Phishing kit used by the bad guys has a gaping insecure file upload bug. https://www.theregister.co.uk/2019/06/05/akamai_phishing_kit_vuln/ "But it's inside the firewall!" Here's 18 cases of insider attacks in the banking industry. https://medium.com/bugbountywriteup/18-cases-of-insider-bank-threats-16a29dcfca18 And, a little security related humor to lighten your week. https://medium.com/commitlog/how-to-design-for-the-web-in-2019-a0be4d6702e2 And that's the news.