What is a CSRF token and how does it work?

Many modern web frameworks like Laravel or the Play Framework have built-in support to protect your web application against cross-site request forgery (CSRF). That’s a good thing, but it is not always clear to every developer when and how to use it. Read more »

Thousands of unsecured MongoDB servers found

In a news article CNET Germany writes about thousands of open and unsecured MongoDB databases being found on the internet, giving full access to personal data including payment data of online shops’ customers. Read more »