One Of The Biggest Mysteries In Cybersecurity: Why Don'T We Demand This?
CyberheistNews, Wednesday, September 10th, 2025
One of the biggest enduring mysteries for me in cybersecurity is why most cybersecurity curricula don't teach secure coding to programmers.
I have no real answers, only speculation.
Secure coding has many other names, including secure by design, security development lifecycle, but it means that the humans involved in the development of software, services and firmware, are given training in how to avoid inserting common security vulnerabilities.
Common vulnerability types include buffer overflows, insecure input handling, hard-coding authentication credentials, directory traversal errors, cross-site scripting, etc. The OWASP Top Ten list is a great list of some of the most common issues.