Prefixes are given to table names so they cannot be easily guessed by a hacker or malicious user. When guessed, the default database table prefix can make life easy for a hacker and enable attacks (like SQL Injection) to be easier to execute successfully. By…
Improving Web Security by Working With What You’ve Got
As I wrote about in a previous post, we’re in the era of cutting back – if not completely eliminating – all non-essential expenditures. The thing is what may seem to be non-essential to management may actually be essential to the business. There could just be…
Acunetix Web Vulnerability Scanner Version 7 build 20111005
An updated build of Acunetix Web Vulnerability Scanner Version 7 was released. This new build, numbered 20111005, includes two new features (support for a wider variety of web applications), a good number of improvements to the PHP AcuSensor technology, and also a minor bug fix….
Explaining the “why” of Web application security
Looking at the bigger picture of application security it seems that no one else really hears us. Sure, product managers, marketing, legal, HR and even certain people in management say they understand what’s at stake. But are they really on board? Business leaders have learned…
How To Tell If You Own a Hacked Website
When it comes to computer hacking and Internet data breaches the news media and filmmakers tend to sensationalize and over-produce what really happens. To the average person, they create the perception that a hacked website will cause the user’s computer to blip and bleep, video…
SQL Injection – The Web Flaw That Keeps on Giving
It’s hard to believe, but SQL injection as we know it has been around for 13 years. Yet, SQL injection is as prevalent as ever as highlighted in The 2011 Mid-Year Top Cyber Security Risks Report. Back in the dot-com era of 1998-99, you may…
Acunetix To Be Exhibited At GITEX Technology Week 2011
Comguard, the Acunetix distributor based in Dubai, will be participating in GITEX 2011, heralded as one of the largest and most important ICT events around the globe. Alive with the energy of the ICT sector and the buzz of real business, GITEX Technology Week — held…
Critical XSS Flaw Discovered in Barack Obama’s Website
A security research team called Vulnerability-Lab have discovered a persistent XSS vulnerability in the official website of Barack Obama. This is not the first time that the president’s website was targeted. About a year ago SecurityShell reported a similar XSS vulnerability on their blog. This…
Acunetix Web Vulnerability Scanner Version 7 build 20110920
An updated build of Acunetix Web Vulnerability Scanner Version 7 was released. This new build (20110920) includes the new Firefox plugin which supports FireFox version 6, a new security check for the Apache web server and a number of application bug fixes. New security check…