Common Website Security Flaws and What They Mean

Having a successful online presence is hard enough. Throwing some website security-related terms into the mix makes it all the more difficult, especially if you’re not a technical person or computer security guru. Although some folks in IT intentionally make web vulnerabilities difficult to understand they don’t have to be. In fact, the essence of […]

Read More →

Acunetix to Be Exhibited at Globaltek 2011

Acunetix WVS will be exhibited at the 2011 Globaltek Security Conference —  held on the 26th of October 2011 at the Hotel Dann Carlton in Bogotá, Colombia. Entry to the conference is free of charge, and the topics covered are guaranteed to be of interest to both businesses and individuals alike. http://www.globalteksecurity.com/

Read More →

PHP Security Directive: Your Website is Showing PHP Errors

With the display_error PHP configuration directive enabled, untrusted sources can see detailed web application environment error messages which include sensitive information that can be used to craft further attacks. Attackers will do anything to collect information in order to design their attack in a more sophisticated way to eventually hack your website or web application, and causing […]

Read More →

VIDEO: How Cross-Site Scripting (XSS) Works

XSS vulnerabilities (Cross-Site Scripting vulnerabilities) are often overshadowed by their big cousin, the infamous SQL Injection. This does not make them any less effective or deadly. XSS and SQL Injection attacks are similar in the way they inject malicious code. The difference is that an SQL attack, injects code into the target database whereas an […]

Read More →

Your WordPress Database Table Prefix Is Not Secure

Prefixes are given to table names so they cannot be easily guessed by a hacker or malicious user. When guessed, the default database table prefix can make life easy for a hacker and enable attacks (like SQL Injection) to be easier to execute successfully. By using the default prefix, your WordPress database security is at […]

Read More →

The Default WordPress Administrator Account Is In Use

With the default WordPress administrator account active, a malicious user does not have to guess the username of other accounts with administrative permissions, thereby putting your WordPress security at risk and making it easier and faster to design an attack. Fix: If this is a new WordPress installation, you can simply create a new administrative […]

Read More →

How To Tell If You Own a Hacked Website

When it comes to computer hacking and Internet data breaches the news media and filmmakers tend to sensationalize and over-produce what really happens. To the average person, they create the perception that a hacked website will cause the user’s computer to blip and bleep, video monitors are going to start scrolling with gobbledygook and a […]

Read More →