The following GoogleTechTalk is a few years old now, but still very relevant. It really is surprising how many compromises occur that can be attributed to well known attack vectors. In fact , the OWASP Top 10 has remained constant for the past two years. Go figure!
Acasta is an independent and Government listed Cyber Security consultancy. We provide HMG Accreditation services, ISO27001 audit & implementation, Technical Solution Design, Security Testing, Training, and, bid/procurement support.