Acunetix Web Vulnerability Scanner v9 build 20130904 introduces detection of BREACH and CRIME SSL vulnerabilities

Acunetix Web Vulnerability Scanner version 9, build 20130904 contains various new features including the detection of BREACH and CRIME SSL / TLS vulnerabilities, the detection of vulnerabilities in OpenX and vBulletin, and various other improvements. New Functionality Implemented the detection for BREACH vulnerabilities. Implemented the detection of Compression Ratio Info-leak Made Easy (CRIME) SSL/TLS exploits. […]

Read More →

Acunetix Web Vulnerability Scanner Announces Full HTML5 Support

As new technologies bring new security risks to light, Acunetix steps up to the challenge with the most comprehensive crawling and scanning technology in the market yet. MALTA, 15 August 2013 — Acunetix today announced the 9th release of its award-winning Web Vulnerability Scanner, building on the experience and knowledge of several years of working with organisations across the […]

Read More →

Acunetix WVS Update 20130308 – New Security Tests

Apart from the usual bug fixes / new functionality, each Acunetix WVS update generally includes new vulnerability tests or an improvement to existing checks. In this post, I would like to summarize the new security tests added in the latest Acunetix WVS update. Unicode Transformation Issues This new security test is looking for issues that […]

Read More →

It Fell Off a Truck: Top Ten US Data Breaches for 2012

According to Ericka Chickowski in her 29 November article for Dark Reading, “10 Top Government Data Breaches Of 2012,” SQL injection, post-phishing and inadequately secured back-up information all contributed to spectacular comprises of data across the USA in 2012. Some of the breaches were the work of hackers, while others were the result of simple […]

Read More →

National Weather Service Hacked

The National Weather Service has been hacked by the Kosova Hacker’s security group, leading to sensitive server information being leaked. The group managed to hack into the server using a Local File Inclusion (LFI) vulnerability in the weather.gov website. As the name denotes, Local File Inclusion (LFI) is the process of including a file or […]

Read More →