Monthly Archives: April 2012

Is your phone possessed? Or is it Android Malware?


By
Tim O'Brien

Hackers aren’t content enough to infect your laptop, they want your phone. There’s an article over on SecurityNewsDaily that talks about some new Android malware that can take over your phone. Here’s the fun quote: “The new Android malware disguises itself in fully functional copies of apps, including ―Angry Birds Space,∥ and hides its malicious […]

Continue reading...

Categories: Uncategorized

Know the enemy: Havij Automated SQL Injection


By
Tim O'Brien

SQL injection really bugs me. It is almost always the application developer’s fault. Once you notice that a site’s registration form breaks on apostrophes (maybe your last name is Irish) it’s often a sign that you’ll be able to throw in some SQL with that last name. Penetration testing experts use a tool like Havij: […]

Continue reading...

Categories: Uncategorized

Web Site Vulnerabilities Fall, but Hackers Become More Skilled


April 16, 2012 By
The Vigilant Application Owner

April 16, IDG News Service – (International) Web site vulnerabilities fall, but hackers become more skilled. The number of coding mistakes on Web sites continues to fall, but companies are slow to fix issues that could be exploited by hackers working with improved attack tools, according to a security expert. The average number of serious […]

Continue reading...

Categories: Uncategorized

Oracle Accidentally Release MySQL DoS Proof of Concept


By
The Vigilant Application Owner

April 16, The H – (International) Oracle accidentally release MySQL DoS proof of concept. Oracle accidentally released a MySQL denial-of-service (DoS) proof of concept in the process of fixing the same problem. In March, the company released updates to MySQL, versions 5.5.22 and 5.1.62, which referred in their changes to “Security Fix: Bug #13510739 and […]

Continue reading...

Categories: Uncategorized