Andrew van der Stock announced the availability of OWASP Top 10 2007 .

This Web Security Trends Report presents new research and statistical breakdowns illustrating the universal nature of malicious code, as well as exposing the presence of malicious code on webpages translated by online translation services.

Architects and developers need to calculate the confidentiality, integrity, and availability requirements of their applications. In short, application classification needs to precede secure application development.

Omninerd.com has published an extensive article which covers the major 2006 Operating System Vulnerabilities. A lot of work has been put in careful analysis of various flavors of the 4 core OSes available today : Windows, OS X, Linux and UNIX.