Top Ten Web Hacks of 2012

March 28, 2013
Web hacks cost companies and consumers millions every year

Had a press release ping onto my screen  saying that the number and creativity of Web hacks constantly increases, and the damage from these attacks rises exponentially, costing companies and consumers millions every year.

Keeping up with these attacks can be hard work for any computer security professional.
Accordingly, website security solutions specialist WhiteHat Security, with the help of an open community and a selected panel of industry experts, has compiled a list of the top ten latest web hacking techniques from 2012 to help highlight these new attacks.

And the winners are:

CRIME (1, 2, 3 4).

Pwning via SSRF (memcached, php-fastcgi, etc) (2, 3, 4, 5).

Chrome addon hacking (2, 3, 4, 5).

Bruteforce of PHPSESSID.

Blended Threats and JavaScript.

Cross-Site Port Attacks.

Permanent backdooring of HTML5 client-side application.

CAPTCHA Re-Riding Attack.

XSS: Gaining access to HttpOnly Cookie in 2012.

Attacking OData: HTTP Verb Tunneling, Navigation Properties for Additional Data Access, System Query Options ($select).

Don't say you hadn't been warned.

Sponsored Recommendations

Highly Integrated 20A Digital Power Module for High Current Applications

March 20, 2024
Renesas latest power module delivers the highest efficiency (up to 94% peak) and fast time-to-market solution in an extremely small footprint. The RRM12120 is ideal for space...

Empowering Innovation: Your Power Partner for Tomorrow's Challenges

March 20, 2024
Discover how innovation, quality, and reliability are embedded into every aspect of Renesas' power products.

Article: Meeting the challenges of power conversion in e-bikes

March 18, 2024
Managing electrical noise in a compact and lightweight vehicle is a perpetual obstacle

Power modules provide high-efficiency conversion between 400V and 800V systems for electric vehicles

March 18, 2024
Porsche, Hyundai and GMC all are converting 400 – 800V today in very different ways. Learn more about how power modules stack up to these discrete designs.

Comments

To join the conversation, and become an exclusive member of Electronic Design, create an account today!