A top 25 list by Common Weakness Enumeration. XSS takes the top spot, followed by SQL injection and “classic” buffer overflow.

The best tutorial on OTP encryption I’ve ever read.

Totally, completely, 100%, perfect, unbreakable encryption is easy, and I mean really easy. It doesn’t require an advanced education to understand and it doesn’t require powerful computers to calculate. Why isn’t anyone concerned about data privacy using it? It has one minor hitch: the two parties exchanging information must meet in person at least once.

Spot on.

A lesser-known but informative online book by Google.

Mikko Hyppönen’s post on why Twitter banned his account. Completely ridiculous when you think about whose account it is.