Insecure Design Vulnerabilities: OWASP Top 10 A04 Explained with Examples
In this video, we break down Insecure Design, a critical issue from the OWASP Top 10, that leads to serious vulnerabilities in applications. Dive into real-world examples of insecure design flaws, such as business logic vulnerabilities, revealing sensitive data in error messages, and failure to log critical actions. We also cover essential prevention strategies using frameworks like STRIDE for threat modeling and MITRE ATT&CK, helping developers and security professionals identify and mitigate risks early in the design process. Watch to learn how a design flaw led to an “infinite money” exploit in Coinbase and understand how you can prevent similar issues in your own applications.
▶︎
OWASP's Top 10 Ways to Attack LLMs: AI Vulnerabilities Exposed
▶︎
2021 OWASP Top Ten: Insecure Design
▶︎
TryHackMe OWASP Top 10 2025:Application Design Flaws – Full Walkthrough | OWASP Web Security
▶︎
Injection Attacks 101: SQL Injection, Code Injection, and XSS
▶︎
OWASP Top 10 2025: Application Design Flaws on @RealTryHackMe
▶︎
Explained: The OWASP Top 10 for Large Language Model Applications
▶︎
OWASP Top 10 2025: Your complete guide to securing your applications
▶︎
10 Principles for Secure by Design: Baking Security into Your Systems
▶︎
OWASP Top 10 2021 - The List and How You Should Use It
▶︎
2021 OWASP Top Ten: Cryptographic Failures
▶︎
Model Context Protocol (MCP) Explained for Beginners: AI Flight Booking Demo!
▶︎
7 Authentication Concepts Every Developer Should Know
▶︎
OWASP Top 10 in 10 Min! (Kinda)
▶︎
The Strange Math That Predicts (Almost) Anything
▶︎
"Hack ANY Cell Phone" - Hacker Shows How Easy It Is To Hack Your Cell Phone
▶︎
Most Devs Get API Authentication Wrong ?
▶︎
2021 OWASP Top Ten: Security Misconfiguration
▶︎
Attacking and Securing JWTs with Rana Khalil
▶︎
2021 OWASP Top Ten: Vulnerable and Outdated Components
▶︎