releases

Acunetix Web Vulnerability Scanner Product Releases

docs & FAQs

Acunetix technical documentation and FAQ

news

Acunetix Company and Web Security news, & Press Releases

events

Acunetix Webinars, Events and Training around the world

web security zone

Everything you need to know about Web Security

Home » Archive by Category

Articles in news

VIDEO: web application firewall bypass with a XSS attack
June 1, 2010 – 6:52 pm | 5 Comments
VIDEO: web application firewall bypass with a XSS attack

In the following demo video, Sandro Gauci of EnableSecurity shows how an attacker can switch off dotDefender in order to bypass any “protection” offered by the WAF.  Such attack is possible By exploiting a cross-site …

Acunetix WVS helps Digicure discover web vulnerabilities
May 20, 2010 – 6:21 pm | No Comment
Acunetix WVS helps Digicure discover web vulnerabilities

A proper web security audit is a mixture of automated and manual tests; Acunetix WVS provides a comprehensive tool for automated testing purposes and useful toolbox Digicure can use for manual penetration testing as well.  …

SQL Injection hits again; 168,000 personal records exposed
May 18, 2010 – 9:27 pm | No Comment
SQL Injection hits again; 168,000 personal records exposed

A hacker, who calls himself “ins3cted”, has demonstrated to Webwereld via video how by exploiting a simple SQL injection, he can retrieve 168,000 personal records from a Dutch website called Experience the OV (http://www.ervaarhetov.nl).
Citizens living …

Gray Powell and the lost iPhone, and malware
April 20, 2010 – 3:45 pm | 2 Comments
Gray Powell and the lost iPhone, and malware

In case you didn’t hear about it already, the story of the day is Gray Powell and the lost iPhone. So I searched for him on Google.
I was really surprised to see that 4 out …

Acunetix WVS voted Windowsecurity.com readers’ choice award winner
February 25, 2010 – 6:20 pm | 2 Comments

Acunetix Web Vulnerability Scanner Voted Windowsecurity.Com Readers’ Choice Award Winner for the third time in a row
London, UK – 25 February 2010 – Leading Windows Security resource site, WindowSecurity.com, announced today that Acunetix Web Vulnerability Scanner was …

Latest Comparison Report from Larry Suto
February 8, 2010 – 5:43 pm | 16 Comments
Latest Comparison Report from Larry Suto

Last week, Larry Suto published a report entitled “Accuracy and Time Costs of Web Application Security Scanner Report”.  I’ve started to investigate in detail the results from this report. And I’ve found a list of …

e107 CMS system website compromised
January 27, 2010 – 5:19 pm | 9 Comments
e107 CMS system website compromised

As part of my job here at Acunetix, from time to time I analyze source code looking for security problems. Using this information I adjust Acunetix WVS to detect these problems automatically (when it’s possible).
Monday, …

Security is hard
January 22, 2010 – 3:29 pm | No Comment
Security is hard

The year debuted with ‘Operation Aurora‘: Google and over 30 other companies were hit by a spear phishing attack which resulted in theft of intellectual property from Google and probably other companies. Spear phishing is a targeted …

AcuSensor, curl and Zen Cart
December 9, 2009 – 7:10 pm | 7 Comments
AcuSensor, curl and Zen Cart

Recently we’ve released a new build, build number 20091124. This build includes a new AcuSensor check named “curl_exec() url is controlled by user”. This new check will verify if the user can control the URL passed to curl_exec.
In …

Changes coming to the OWASP Top 10 in 2010
December 3, 2009 – 8:24 pm | 9 Comments

In the spirit of improving Web application security worldwide the folks at OWASP have released the OWASP Top 10 2010 “release candidate”. It’s currently open for comments and scheduled for final release the first quarter …