The Open Web Application Security Project (OWASP) released an updated version of its "Top 10" [1] . If you are in any way responsible for the development, maintenance or general upkeep of web applications and related infrastructure, this is a MUST READ document for you.

According to the OWASP press release, this update focuses more on "Risks" vs. "Vulnerabilities".

[1] http://www.owasp.org/index.php/Top_10

------
Johannes B. Ullrich, Ph.D.
SANS Technology Institute
Twitter