Inside the Mind of a Web Miscreant

We hear about “hackers” and “bad guys” on the internet all the time, but why do they do it? Without delving deeply into criminal psychology, they simply do it because they can. They often do it to promote a political cause or to make money. They do it to make others look bad and to […]

Read More →

Finding Web Flaws is not Point and Click

Successful web security testing is not as simple as point and click. Unfortunately, many people treat it as such. The thought process goes something like this: 1.    Load web vulnerability scanner. 2.    Enter URL to scan. 3.    Click Go. 4.    Generate report for the auditors. 5.    Be done with it until next month. Don’t get […]

Read More →

2012 – The Year Hacking Became a Political Weapon

On 30 November Reuters reported that Anonymous will shut down Syrian government websites worldwide to fight the government’s countrywide Internet blackout, which many believe was put into effect to silence opposition to President Bashar al-Assad. According to Martin Chulov of The Guardian, in his 29 November article, “Syria shuts off internet access across the country,” […]

Read More →

It Fell Off a Truck: Top Ten US Data Breaches for 2012

According to Ericka Chickowski in her 29 November article for Dark Reading, “10 Top Government Data Breaches Of 2012,” SQL injection, post-phishing and inadequately secured back-up information all contributed to spectacular comprises of data across the USA in 2012. Some of the breaches were the work of hackers, while others were the result of simple […]

Read More →

The Email that Hacks You

Update: Seems to be working on TP-Link Routers as well (tested on TL-WR841N). Update2: Arcor EasyBox A600 also seems vulnerable. Opening a legitimate looking email on an iPhone, iPad or Mac while using an Asus router with a default or guessable password could compromise the security of your internal network. I conducted tests on two Asus routers […]

Read More →

It’s No Picnic: NBC Websites Hacked

On November 4th, Steven J. Vaughan-Nichols of ZDNet, who covers security, posted on his blog that NBC had suffered a hack on a number of its websites during the early morning of Sunday, November 4th. According to Vaughn-Nichols, as of noon Eastern Standard Time the sites were coming back up, but there were still a […]

Read More →

Protect Your Website During National Blog Posting Month

On November 1st, MarketWire and other sites across the Internet announced National Blog Posting Month (NaBloPoMo), an annual ritual for dedicated bloggers. Blogger Eden Kennedy launched NaBloPoMo in 2006; the event has grown to include thousands of bloggers, and it’s now celebrated officially under the auspices of BlogHer, Inc. (www.blogher.com). NaBloPoMo generates themes and daily […]

Read More →

Automate more with the new Acunetix WVS 8 build

The new Acunetix Web Vulnerability Scanner build number 20121106 includes a number of new features, new security checks, product improvements and as well bug fixes. To help web security experts automate their work, in this new build we included a new feature that allows you to schedule up to 2,000 website security scans via a […]

Read More →