Information leakage

- [Kevin] AppSec tutorials - information leakage. About this course, information leakage is a type of security vulnerability that can affect nearly any application. Anytime a system discloses sensitive information, it could potentially benefit malicious users who depend on such information to succeed in their goals. In this course, you'll see some examples of how this weakness can arise and how it can be addressed. To get the most out of this course, if you haven't already done so, we recommend that you take our introduction to web application security course first. Hello, my name is Kevin Richard, and I'm a security researcher with Veracode. Today, I'd like to introduce you to the application security weakness known as information leakage. To do this, I'm going to use an application called VeraInsecure, a web app we're building in order to demonstrate a number of real security vulnerabilities. Let's get started. The term information leakage can be used to describe a wide variety of…