Alliance Technology Partners, partnering with Acunetix since 2007, have announced they shall be offering Acunetix Training Courses, delivered via the web, by two of their senior security engineers. This Basic Training 3 hour course, is highly interactive and tailored to the users’ experience level and…
WordPress 4.0 “Benny” released
The long awaited WordPress version 4.0, codenamed “Benny” in honour of jazz clarinettist and band leader Benny Goodman has been released. While this does seem like a major release to some of us, since it includes a good amount of features easing the blog writers’…
List of checks done by Acunetix on WordPress
In a bid to ensure WordPress Security, an Acunetix web vulnerability scan is able to detect a WordPress installation, and will execute various WordPress related checks when the popular blogging web application is identified. When WordPress is detected, Acunetix will issue the following knowledge base…
Acunetix WVS v9.5 build 20140902 detects Hibernate Query Injection, Format Strings and more
Acunetix Web Vulnerability Scanner version 9.5 build 20140902 has been updated to include new vulnerability checks, including detection of Hibernate Query Injection, format strings vulnerabilities, MySQL username disclosure and others, including some, in well-known web applications. This new build also optimises existing checks, including its…
Balancing web security with your compliance requirements
As an executive responsible for many aspects of running your business, it can be difficult and downright confusing trying to understand the balance between Web security and compliance. Your IT, information security, and internal audit teams may be telling you completely different things based on…
Visit Acunetix Stand at OWASP AppSec USA 2014
Acunetix will be sponsoring and exhibiting at this year’s OWASP AppSec USA. The event will be held from 16th to the 19th September at the Denver Marriott City Center, Denver, USA. AppSec USA is a world-class software security conference for developers, auditors, risk managers, technologists, and entrepreneurs gathering with…
Danger: Open Ports – Remote Access Trojans (RATs) vs Worms
Having a good antivirus solution gives a warm, fuzzy feeling of safety: you know that your assets are virus free and that your network is secure. However, most antivirus solutions cannot detect Remote Administration Tools (aka Remote Access Trojans or just RATs), because their structure…
POS Security: Are my POS terminal credentials up for sale?
There is a black market for stolen credit card information: you can shop online for credit card data for prices between 20$ and 100$ per item. Underground websites like Silk Road (today Silk Road 2.0) offer the possibility to acquire this information anonymously (via The…
Heartbleed Used to Steal Credentials and Breach Community Health Systems
Last Monday, Community Health Systems (CHS) filed an 8-K filing with the US Securities and Exchange Commission, confirming a security breach which occurred in April and June, 2014. CHS blamed the breach on a group of Chinese hackers. The 8-K filing confirms that the hackers…