In view of COVID-19 precaution measures, we remind you that ImmuniWeb Platform allows to easily configure and safely buy online all available solutions in a few clicks.

Community Edition
Total Tests:
This Week:
Today:
Stay in Touch

Weekly newsletter on AI, Application Security & Cybercrime


Your data will stay confidential Private and Confidential

ImmuniWebSecurity BlogPage 27

ImmuniWeb Security Blog | Page 27

RansomWeb: emerging website threat that may outshine DDoS, data theft and defacements?
January 28, 2015 | High-Tech Bridge Security Research

More and more people become victims of ransomware, a malware that encrypts your data and demand money to decrypt them. A new trend on the market shows that cybercriminals will now ...

How long does website penetration testing take?
January 26, 2015 | High-Tech Bridge Security Research

Penetration testing is usually billed by the number of hours the security auditors (pen testers) spend on a project, many of us face the same question: how long does a penetration ...

Web security and hacking trends for 2015
January 5, 2015 | Ilia Kolochenko

What are biggest risks and threats your web applications will probably face in 2015?

How to keep your website safe in 2015
December 17, 2014 | Application Security Series

Vulnerability scanning can be very cheap or even free, while penetration testing can be considered quite expensive and time-consuming to plan and execute. However, penetration ...

XSS: the easiest way to hack your website in 2014
November 20, 2014

There is no need to convince people that XSS was, is and probably will be the most frequent web vulnerability. However, many people, including security engineers, team leaders and ...

CVE-2014-3669: Integer overflow in unserialize() PHP function
October 20, 2014 | Symeon Paraschoudis

In this blog post we are going to analyze an integer overflow we discovered in PHP (version <= 5.6.1, 5.5.17, 5.4.33) during our security research campaign which was conducted on ...

Efficiency and effectiveness: the missing combination in a fragile security industry
October 14, 2014 | Kevin Townsend

When Symantec, one of the grand old dames of security, decided to split itself into two separate companies last week, it raised questions about the entire security market. It ...

Plugins and extensions: the Achilles heel of popular CMSs
September 30, 2014 | Kevin Townsend

A by-product of High-Tech Bridge’s ImmuniWeb® web application penetration test SaaS is the frequent discovery of vulnerabilities in popular web applications and CMSs.

Bug bounty programs - the road to hell is paved with good intentions.
September 17, 2014 | Kevin Townsend

Bug bounties are in the news again. Twitter has announced its own new scheme, while Robert Graham of Errata Security claims legal actions brought for loss of personal data will ...

Vested Interests have hijacked Edward Snowden
September 8, 2014 | Kevin Townsend

Microsoft case shows the NSA is not a hacking threat; organized crime remains the biggest problem.

Right to be... Compromised
August 29, 2014

Today when the media is full of talk about privacy and the right to be forgotten introduced by Google, I get the impression that some companies use and even abuse their right to ...

Second high risk flaw in 2 months found in articleFR
August 7, 2014

High-Tech Bridge operates a responsible disclosure policy. When our researchers find a vulnerability we file a report to the vendor, which contains all details about the ...

arrow left2223242526272829arrow right

This website uses cookies to provide you with a better surfing experience. To learn more, please visit our Privacy Policy. By continuing to use this website you consent to our use of cookies.

How it Works Ask a Question