The One Web Security Testing Oversight You Don't Want to Miss

The One Web Security Testing Oversight You Don't Want to Miss

As I’ve written about scoping your Web security tests in the past, it’s not something to be taken lightly. Interestingly, there’s one aspect of Web security testing where I’m still seeing a big disconnect. The issue is how many critical … [+]

Acunetix Web Vulnerability Scanner 8 Combats Rise in Web Hacking Attacks

Acunetix Web Vulnerability Scanner 8 Combats Rise in Web Hacking Attacks

New Automation & Auto-Configuration Features Make Securing Your Website Easier and Faster London, 16th Feburary 2012 – Acunetix, a name on the forefront of the web application security industry, today announced the 8th version of its popular Web Vulnerability Scanner product. … [+]

HTTP Parameter Pollution - a Newer Class of Injection Attack

HTTP Parameter Pollution – a Newer Class of Injection Attack

Nowadays, many components from web applications are commonly run on the user’s computer (such as JavaScript), and not just on the application’s provider server (such as Servlets). As time goes by, there is the need for web applications to provide … [+]

There’s More to Web Security than Meets the Eye

There’s More to Web Security than Meets the Eye

When we talk about Web security, we typically think about the common OWASP-type elements: SQL injection, cross-site scripting, passwords, encryption and the like. That’s fine but those areas can’t be our only focus. There’s so much more to managing information … [+]