What is JavaScript?
JavaScript is essentially a scripting programming language that allows you to implement complex items onto your webpage. Every time a webpage becomes interactive with the user, e.g interactive maps, videos, countdown timer and music, and even colours, chances are JavaScript is involved. Facebook is a great example of how JavaScript works smoothly and effectively, with videos playing smoothly, perfect animation and constant post updates.
Among many of our forensic clients we are noticing that fairly often the login panel for administration of the sites is left publicly and easily accessible, either through easy to guess URLs or unpatched vulnerabilities.
While this is not an immediate threat, an exposed and obvious administrative login panel can make it significantly easier for attackers to breach the site, especially if access controls are limited to username and password combinations alone. This situation allows for simple brute forcing, signing in with compromised credentials/obtaining credentials, or in the case of unpatched systems, access by exploiting vulnerabilities. Even in cases where the admin login panel URL is complex and hard to guess, path disclosure vulnerabilities can be used to locate it.
We have all heard the word ‘Malware’ but what is it, and how can it affect you?
Websites, servers and applications are prone to cyberattacks, but how can a WAF help you defend yourself against these attackers?
What is JavaScript?
JavaScript is essentially a scripting programming language that allows you to implement complex items onto your webpage. Every time a webpage becomes interactive with the user, e.g interactive maps, videos, countdown timer and music, and even colours, chances are JavaScript is involved. Facebook is a great example of how JavaScript works smoothly and effectively, with videos playing smoothly, perfect animation and constant post updates.
Among many of our forensic clients we are noticing that fairly often the login panel for administration of the sites is left publicly and easily accessible, either through easy to guess URLs or unpatched vulnerabilities.
While this is not an immediate threat, an exposed and obvious administrative login panel can make it significantly easier for attackers to breach the site, especially if access controls are limited to username and password combinations alone. This situation allows for simple brute forcing, signing in with compromised credentials/obtaining credentials, or in the case of unpatched systems, access by exploiting vulnerabilities. Even in cases where the admin login panel URL is complex and hard to guess, path disclosure vulnerabilities can be used to locate it.
We have all heard the word ‘Malware’ but what is it, and how can it affect you?
Websites, servers and applications are prone to cyberattacks, but how can a WAF help you defend yourself against these attackers?
