Web Security Zone | Acunetix Web Application Security Blog

releases

Acunetix Web Vulnerability Scanner Product Releases

docs & faq

Acunetix technical documentation how to and FAQ

news

Acunetix Company and Web Security news, & Press Releases

events

Acunetix Webinars, Events and Training around the world

web security zone

Everything you need to know about Web Security

Home » Archive by Category

Articles in web security zone

Getting developers on board with security – once and for all

August 4, 2010 – 8:25 pm | One Comment

Making Web application security work is more than simply telling developers they need to write better code. We can scream “Write better code!” and “Integrate security into the application lifecycle!” at developers until end of …

Discovered XSS on Facebook can lead to account hijack

July 28, 2010 – 7:59 pm | 2 Comments

Facebook rates as the second most popular website on the internet with 400 million active users. When such a website has common web application security flaws, they are going to be abused for one’s gain. …

Web security oversights: Don’t overlook the “small” stuff

July 14, 2010 – 7:41 pm | 2 Comments

I was reviewing the most recent SANS @RISK Consensus Security Vulnerability Alert and it reminded me of how easy it is to get caught up in the big stuff and overlook the seemingly innocuous when …

Dangerous XSS vulnerability found on YouTube – the vulnerability explained

July 6, 2010 – 2:44 am | 2 Comments

On the 4th of July 2010 YouTube users began complaining that their videos had been hijacked, the comments section of their videos seemed to be most severely affected, many complained that old comments vanished and new comments could not be added. Others reported that offensive messages were popping up on their screen or scrolling horizontally in large fonts and striking colors. Some users also seemed to suggest that there were experiencing page redirects, often to sites promoting pornographic content.

In-depth analysis of a PHP attack that lead to Apple information disclosure

June 17, 2010 – 9:41 pm | 7 Comments

Recently over 100,000 Apple customers were affected by an information gathering attack on the AT&T website. Security experts blame this breach on “poorly designed software”. An analysis of the attack reveals that the hackers did indeed use a classic attack, in fact…

Seven Signs You’re Not Ready to Run a Web Vulnerability Scan

June 16, 2010 – 9:08 pm | 6 Comments

Looking to hop aboard the Web vulnerability scanning bandwagon to see just how vulnerable your Web site or application really is? Well, not so fast. Here are some signs you’re not ready to begin just …

Web application contingency plans – the missing link in Web security?

June 9, 2010 – 8:11 pm | One Comment

Why are Web applications out of the loop when it comes to contingency planning? Look at any given security incident response or disaster recovery plan (assuming they even exist) and chances are business critical Web …

web application firewall bypass with a XSS attack

June 1, 2010 – 6:52 pm | 5 Comments

In the following demo video, Sandro Gauci of EnableSecurity shows how an attacker can switch off dotDefender in order to bypass any “protection” offered by the WAF. Such attack is possible By exploiting a cross-site …

Should you scan a website through a web application firewall?

May 25, 2010 – 6:58 pm | 5 Comments

Unfortunately, it is of frequent occurrence that people launch a security scan against a website or web application sitting behind a web application firewall, or some other kind of web security gateway device. Scanning a …

Creating a Web security testing policy

May 11, 2010 – 7:07 pm | No Comment

If you’re reading this blog, Web security testing is undoubtedly on your radar. You may have an ongoing process for testing Web vulnerabilities but do you actually have a policy for it? I’m all …

docs & faq »

VIDEO: What’s new in Acunetix WVS v7?

Check out this 4 minutes YouTube video to find out what’s new in the new and revolutionary Acunetix Web Vulnerability Scanner Version 7.

Click here to watch the high quality version of this video

OWASP AppSec US 2010, California

Acunetix will be exhibiting at the OWASP AppSec US 2010 in California. The event will take place between 7th and 10th of September 2010. The event will be held at UC Irvine Conference Center, in …

Acunetix 7 makes web application security checking easier and more cost effective

New scanning engine with improved vulnerability detection AND verification makes finding and fixing security issues in web applications easier.
London, 1st September 2010 – Acunetix, a market leader in web application security scanning technology, today announced …

Acunetix 7 scanning engine & improved vulnerability detection makes finding and fixing web vulnerabilities easier http://bit.ly/baOOCJ 11:57:48 AM September 01, 2010 from TweetDeck
Securityonwheels.com on Acunetix V7 "It reminds me of Windows 7 compared to Vista-looks similar but much, much better" http://bit.ly/beq4j6 08:07:37 AM August 30, 2010 from TweetDeck
Check out this 4 mins video to find out what's new in the new & revolutionary Acunetix Web Vulnerability Scanner V7. http://bit.ly/9Bi72o 02:43:18 PM August 26, 2010 from TweetDeck
Acunetix WVS v7 RC1 is available for download. Stay tuned, the official release of Version 7 is around the corner! http://bit.ly/b9f7Wj 01:57:39 PM August 25, 2010 from TweetDeck
RT @WebSecurityNews: United Nations Website Contains SQL Injection Flaws Three Years After Hack ... http://ow.ly/18H7WW 07:14:37 AM August 24, 2010 from TweetDeck