Week 10 Summary
Web-application hacking highlights the importance of sanitizing data. This is all made possible due to how the application can accept unexpected values as input. It is through this method that malicious code is injected into the web application via the input field box. The reading also describes the Burp Suite, which is a collection of tools used for doing security testing of Web applications. The tools are Burp Proxy, Burp Sitemap & site scope, Burp spider, Burp intruder (used for SQL injections) , Repeater, Sequencer, Decoder and Comparer.
In The News:
TalkTalk ransome, Hacker demanded 80k GBP
TalkTalk has confirmed that they did have a security incident. It looks like the attacker used SQL injection to steal the database on the website. Now it looks like the website might have stored the information of 4 million customers or so…
..it started with the CEO talking about getting a ransom letter, the letter basically said if you don’t pay up to 80,000 pounds or 120,000 dollars in Bitcoin, we are going to release all your information and they also included a sample of the information, that was stolen…
Leave a Reply