An updated build of Acunetix Web Vulnerability Scanner Version 7 was released. This new build (20110711) features improved Cross-Site scripting (XSS) web security checks, an improved crawler, better web 2.0 support and a number of bug fixes. New feature: Included IMAGE tag with source…
How can I change the WordPress database table name prefix?
**Do not do the below change unless you are comfortable with PHPMyAdmin and making changes to MySQL. If not, ask someone who is familiar with WordPress and MySQL to assist you. Also, backup your blog; it is of utmost importance that before doing any changes…
How Much Web Security is Enough?
A good web application security environment is one that balances security with convenience. Nothing more and nothing less; just the security that’s needed to keep things reasonably in check. But just how much is enough? All too often I see websites and applications with too…
Recently Backdoored WordPress Plugins
In the previous article, The Rise of the Backdoored WordPress Plugins, I discussed the ever-growing threat to WordPress security in the form of compromised plugins. As promised, here are the changes made by attackers to the popular plugins, WPtouch, W3 Total Cache and AddThis. WPtouch…
90% of US Companies Hacked!
Alarming results have been announced following a recent survey conducted by the Ponemon Research Institute and Juniper Networks. In their survey, 583 American companies were interviewed on security related questions. The result seems to correlate with what we have been seeing in the media during…
The Cure for Many Web Application Security Ills
One of the things I’ve learned throughout my career is that many solutions to the problems we face in IT, security and software development can be solved if we simply turn to business leaders to see how it’s done. In particular, I’m talking about a…
The Rise of Backdoored WordPress Plugins
It all started a few months ago when I was visiting Lester Chan’s website looking for some information about one of his plugins. Lester Chan has written a good number of very popular WordPress plugins that are used by millions of people. Some of the…
Sega Hacked: Over a Million Accounts Exposed
Sega Corporation has joined the increasingly long list of video game companies to suffer a data breach. In an email sent to members of its Sega Pass service, it admitted that the user accounts over almost 1.3 million users had been compromised.
Like Acunetix, Like Facebook, Win an iPad 2
One lucky Acunetix Facebook follower will be selected at random to win an iPad 2!