ImageMagick vulnerability being exploited in the wild Following its reveal last week, hackers are leaping on the ImageMagick vulnerability, which could allow an attacker to execute code on servers using the the vulnerable library frequently used to crop or resize images. ImageMagick is a popular…
PCI-DSS 3.2 released – Summary of Changes
The new version of PCI-DSS 3.2 has just been released, so having been through it with a fine toothcomb here are the most noteworthy changes, additions and clarifications, in the order in which they appear in the report. This new standard 3.2 is due to…
The latest build of Acunetix updates PCI DSS and NIST compliance reports
Acunetix v10.5 build 20160504 has been released. This new build updates the PCI DSS and the NIST compliance reports with the requirements of PCI DSS 3.2 and NIST 800-53 rev4 respectively. The new build also fixes an important bug uncovered earlier this week. Improvements Updated…
JBoss Ransomware Vulnerability Attacks
In recent weeks there have been multiple reports regarding a ransomware campaign, known as SamSam, targeting vulnerable JBoss (now known as WildFly) application servers. An official report released by Cisco Talos states that there have been approximately 3.2 million machines hosting the vulnerable versions of…
Acunetix showcases Online Vulnerability Scanner at 2016 TELCO Cloud Forum
London, UK – May 2016 – Leading web app and network security experts Acunetix will be exhibiting for the first time at the 7th Annual TELCO Cloud 2016 Forum taking place on 10th and 11th May 2016 at Stand 7 at the Park Plaza Victoria,…
In the headlines: UK surveillance policies leak; DDoS attacks; Australia’s Cyber Security Strategy; Facebook hack, and more
UK surveillance policies leaked online UK privacy campaigners Privacy International have managed to get their hands on, and subsequently have released a set of UK surveillance policies. What these policies reveal are the extent to which government agencies such as MI5 and GCHQ have access…
Latest build of Acunetix includes new version of .NET AcuSensor, checks for JSP source code disclosure and improves crawling capabilities
Acunetix v10.5 (build 20160427) has been released. This new build includes a new version of the .NET AcuSensor registers with .NET web applications in a way that supports signed .NET Assemblies. In addition, it includes new and improved vulnerability checks and a number of minor…
Mitigating extension vulnerabilities in template-based applications
There are over 43,900 official plugins available for WordPress, another 6,200 for Joomla! and 33,700 for Drupal, not to mention the countless other platforms that are freely and easily accessible. The plugins’ abilities range from adding photos for a personal website to complex development collaboration…
Acunetix to exhibit at the 7th Annual TELCO Cloud Forum
Acunetix will be exhibiting for the first time at the 7th Annual TELCO Cloud 2016 Forum on 10th and 11th May 2016 at Stand 7 at the Park Plaza Victoria, London, UK. The TELCO Cloud Forum is a one-stop-shop for Telco Cloud professionals bringing the entire ecosystem under…