Acunetix is once again exhibiting at OWASP AppSec USA.  This premier application security conference for developers and security experts, provides attendees with insight into leading speakers for application security and cyber security, training sessions on various applications, networking, connections and exposure to the best practices in cybersecurity. Visit Acunetix on Stand S20 at the Fairmont […]

Read More →

Any fellow webmaster you may ask who is beyond the novice stage will agree that one of his top priorities will always be keeping his websites secure. However, the number of exploits and tools available to hackers are so vast, and software technologies evolving so rapidly, that it is very possible, maybe likely, that you […]

Read More →

The beauty of being a company based in Malta is that we get to enjoy good weather and fine seas. As a team building exercise and to close off the Summer season, Acunetix staff hopped onto a private boat to the smallest island of the Maltese Archipelago – Comino! Here we enjoyed a sunset swim […]

Read More →

Acunetix version 12 (build 12.0.180911134) has been released. This new build adds two new AcuMonitor checks, detection of Web Cache Poisoning, Apache Struts RCE, URL rewrite vulnerabilities and Drupal Core Open Redirect. This new build has a good number of updates and some important fixes. Below is a full list of updates. New Vulnerability Checks […]

Read More →

This is part-2 of a 2 part series that discusses the risks involved for application security in the new multi-cloud environments. This part introduces the requirements for multi-cloud, the types of multi-clouds and the risks they transport to application security. Requirements for multi-cloud So why is there a need for true multi-cloud capacity? The upsurge […]

Read More →

If there’s one specific reason why website owners don’t take steps to boost their online security to protect their blogs and websites from hackers, it’s usually because they believe one of two things: They don’t believe their website or blog has anything worth of real value to hackers They don’t believe that they ever will […]

Read More →

What is XML External Entity (XXE)? XML External Entity Injection is often referred to as a variant of Server-side Request Forgery (SSRF). XXE leverages language parsers that parse the widely used data format, XML used in a number of common scenarios such as SOAP & REST web services and file formats such as PDF, DOCX, […]

Read More →

Acunetix v12 (build 12.0.180821106) has been released. This new build adds checks for vulnerabilities in Liferay, Apache Shiro, RichFaces, Telerik and Tomcat. The new build also includes a number of updates and fixes. Below is a full list of updates. New vulnerability checks Detection of Liferay TunnelServlet Deserialization Remote Code Execution Detection of Liferay XMLRPC […]

Read More →

This is part 1 of a two part series that discusses the risks involved for application security in the new multi-cloud environments. This part introduces cloud threats to the application, different types of cloud types and finally the latest multi-cloud design. Introduction The World Wide Web (WWW) has transformed from simple static content to serving […]

Read More →

Credential theft has been a cyber-criminal staple since the early days of computing. While there have been fewer cases in the US over the past year, according to data from Blueliv we have seen a 39% spike in Europe. This massive rise should be alarming to businesses that operate in Europe, because it only takes […]

Read More →