Released on: 28, July 2006
, Author: Tamara Borg / Acunetix
, Audience: Computers related
London, UK Â 28 July, 2006 Â Netscape.com, an online socialmedia website, has been hacked through a cross-site scripting (XSS) vulnerability intheir recently launched news service. It is reported that the attack was launched byfans of Digg.com, a competing social networking website. The hackers used the XSSvulnerability to inject their own JavaScript code into the homepage and other pageson the site.
The hack was discovered by Finnish security vendor (F-Secure), during their researchwork around cross-site scripting vulnerabilities on social networking sites. Diggfans used cross-site scripting attacks to display JavaScript pop-up alerts with"comical" messages aimed at redirecting visitors to their site. Fortunately nomalicious code was injected. Netscape released a statement yesterday afternoonstating that the vulnerability had been patched and that visitors are once againsafe.
Acunetix Web Vulnerability Scanner automatically audits web applications and checkswhether these applications are secure from exploitable vulnerabilities to such hackattacks as cross site scripting. Although Netscape has now fixed the flaw, anautomated check of NetscapeÂ's website (using Acunetix WVS) could have prevented thisattack and saved the company from denting its reputation and the subsequent loss ofcustomer trust. Furthermore, hackers could have injected code aimed at stealingpersonal customer data rather than defacement. Most hackers, nowadays, attackwebsites because of the payoff from stealing such sensitive data as credit cards andsocial security numbers.
Acunetix provides free audit to help companies determine the security of their websites
Enterprises who would like to have their website security checked can register for afree audit by visiting www.acunetix.com/security-audi t. Participating enterpriseswill receive a summary audit report showing whether their website is secure or not.Summary reports will be delivered within five business days of submission.
About Acunetix Web Vulnerability Scanner
Acunetix Web Vulnerability Scanner ensures website security by automaticallychecking for SQL injection, Cross site scripting and other vulnerabilities. Itchecks password strength on authentication pages and automatically audits shoppingcarts, forms, dynamic content and other web applications. As the scan is beingcompleted, the software produces detailed reports that pinpoint wherevulnerabilities exist.
About Acunetix
Acunetix was founded to combat the alarming rise in web attacks. Its flagshipproduct, Acunetix Web Vulnerability Scanner, is the result of several years ofdevelopment by a team of highly experienced security developers. Acunetix is aprivately held company with headquarters based in Europe (Malta), a US office inSeattle, Washington and an office in London, UK. For more information aboutAcunetix, visit: http://www.acunetix.com; http://www.acunetix.de.
All product and company names herein may be trademarks of their respective owners.
Source: Express-Press-Release.com
Related downloads
Undelete removable media files tool supports windows operating system like Windows 98, XP, ME, NT, 2000, 2003 server, Vista Ultimate, Home Basic, Home Premium, Vista Business. USB drive salvage software supports various formats like JPG, JPEG etc.
MediaSniper is a simple program for downloading media files from popular websites (e.g. YouTube, Google Video). Free and open source Java software. Screenshots and more information available at http://mediasniper.sourceforge.net/
WebCache is used with Netscape Navigator ver. 2.0x/3.0x/4.0x/4.7x
as an utility for cache browsing. It does following things:
1.Scan cache
2.Find in cache
3.Save pages/ Partial cache delete
4.Scan bookmarks
Privacy tool that helps you maintain your privacy by cleaning up all traces of your Internet and PC usage - erases entered data like personal information in online forms, Urls in your browser address bar - clears temp and temporary internet files.
Block Netscape, Internet Explorer, Mozilla and desktop pop-up windows with the latest upgrade of this small tool, now with added support for Mozilla, and new technology to block annoying Messenger Service and GAIN adserver desktop ads!
Cleans browser tracks for Internet Explorer, Netscape and AOL: including the cache, cookies, history, Auto-complete form data, and more.
Convert or merge bookmarks between all big browsers, in any direction.
Netscape, Internet Explorer, Opera and Mozilla.
No limit on size of bookmark collection, all info is converted, order of bookmarks is preserved.
Command-line conversion.
Stop Netscape and Internet Explorer pop-up windows with the latest upgrade of this small tool. No need to adjust proxy settings, or add sites to a list. Allow pop-up windows only when you want them. User settings allow various pop-up notifications,
Compass has been a popular and powerful bookmark manager program since its first release in January, 1997. It supports three most popular browsers - Netscape, Internet Explorer, and Opera. Plus, it can launch any system specified generic browsers.
Maximizes new Internet Explorer, Outlook Express and Netscape Navigator windows.
Minimizes pop up windows.
