Tuesday, December 9, 2014

Singaporean jailed for hacking Prime Minister's office website

AFP News – Mon, Dec 8, 2014
ricky l
0users liked this commentThumbs UpThumbs Down0users disliked this comment
ricky l • a second agoRemove
Implementing WAF will have prevented the x-script attack.
ricky l
0users liked this commentThumbs UpThumbs Down0users disliked this comment
ricky l • a second agoRemove
No need white hackers to test system.
Penetration test and vulnerability scanning will have revealed the security leak. 

ricky l
0users liked this commentThumbs UpThumbs Down0users disliked this comment
ricky l • a second agoRemove
Layered concentric security defense - will be the best defense.
Reply

ricky l
0users liked this commentThumbs UpThumbs Down0users disliked this comment
ricky l • a second agoRemove
WAF is a Web Application Firewall that will apply a set of rules to the HTTP conversation - to detect vulnerability and will have detected the X-script attack - and block the attack.

The X-script attack will have failed.

The WAF should be implemented after the Server load balancer that will have decrypted HTTPs or SSL traffic so that the WAF can inspect the unencrypted Web traffic.

ricky l
0users liked this commentThumbs UpThumbs Down0users disliked this comment
ricky l • a second agoRemove
APT - defense system is one type of layered concentric security defense.
 
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)