Web application security

Many people understand how important it is to have web application security both in the e-commerce . One of the primary concerns for organizations is attacks by appsec. However, there are many other very dangerous attacks, including cross site scripting, SQL injection and http verbse attack. Data loss is one of the most common issues following one of these attacks. However, data loss would be the least of an organization’s concerns considering attackers are generally also able to get access to the specific pieces of data they are looking for. An example of why web application security is so important is for when SQL injection allows an attacker to get access to credit card information or data relating to a person’s identity. This is often the type of information that hackers are after of course.

Example 1

In SQL:

If one provided:

the query string becomes:

Syrian Electronic Army  gain access to Aljazeera network .

aljazeera got hacked

After English website . Syrian Electronic Army  penetrate aljazeera network .

After Syria hackers take down al Jazeera English website ;  Success to aljazeera network , in 01/02/2012 confirmed Tuesday that hackers breached security and had access to the network .

The is an interview with the hackers:

Web Security 
————————————-
Aljazeera have a local publishing system
so you can login to publishing system only from AlJazeera Office- Doha
We hacked aljazeera network and access the publishing system using user and password
we didn’t publish any news because its need approval but we upload some photos
its just the beginning really
————————————
All Respect
Syrian Electronic Army
The Pro

 The image of the pentest :

aljazeera network hacked

 Screen 2: (continue reading…)