Not surprising at all. I work in IT and security is by and large reactionary and based on scans that are often rudimentary. As far as training devs on good security practices there’s next to nothing. You learn from getting your hand slapped or you don’t learn at all.
Not surprising at all. I work in IT and security is by and large reactionary and based on scans that are often rudimentary. As far as training devs on good security practices there’s next to nothing. You learn from getting your hand slapped or you don’t learn at all.
As someone who is frequently the one slapping hands (and backs of heads), I can confirm this.
And still they don’t learn.