Acunetix Web Vulnerability Scanner placed first in a paper released by Adam Doup´e, Marco Cova, and Giovanni Vigna from the University of California, Santa Barbara. In the paper “Why Johnny Can’t Pentest: An Analysis of Black-box Web Vulnerability Scanners”, the authors compared the capalities of…
Monthly Archives: June 2010
OWASP AppSec US 2010, California
Acunetix will be exhibiting at the OWASP AppSec US 2010 in California. The event will take place between 7th and 10th of September 2010. The event will be held at UC Irvine Conference Center, in Irvine, California. For more details about the OWASP AppSec conference…
In-depth analysis of a PHP attack that lead to Apple information disclosure
Recently over 100,000 Apple customers were affected by an information gathering attack on the AT&T website. Security experts blame this breach on “poorly designed software”. An analysis of the attack reveals that the hackers did indeed use a classic attack, in fact…
7 Signs You’re Not Ready to Run a Web Vulnerability Scan
Looking to hop aboard the Web vulnerability scanning bandwagon to see just how vulnerable your Web site or application really is? Well, not so fast. Here are some signs you’re not ready to begin just yet: 1. You don’t have any desired outcomes…
Could BP Learn from the Malware Attacks on recent hosts?
As I watch the debacle unfold in what is quickly becoming widely known as one of the worlds worst environmental disasters – I watch with interest the actions of Mr. Hayward – the CEO and point man for the BP Company. Since I’ve been working…
Web application contingency plans – the missing link in Web security?
Why are Web applications out of the loop when it comes to contingency planning? Look at any given security incident response or disaster recovery plan (assuming they even exist) and chances are business critical Web applications and related systems are missing. At least that’s what…
Fraud: An Infected Website Is a Commodity
It’s a sad statement to make that anyone can become a hacker, with a few dollars and the right contacts anyone can “order” an infected website. A simple email will give anyone the means to access credit card numbers, addresses, and all of your personal…
Consider outside of the box for security – It can be exposing
In the past few days, a site selling Durex condoms have had a small ‘exposure’ problem. As reported, the site had been suffering (time length unknown) from several basic security exposures, including even allowing orders to be viewed online, without a login – simply by…