Good reading, if you want to know how website hack in. They used third party not so maintain codes and buggy CMS. Thats why we need Open Source CMS
http://arstechnica.com/tech-policy/news/2011/02/anonymous-speaks-the-inside-story-of-the-hbgary-hack.ars Unfortunately for HBGary, this third-party CMS was poorly written. In fact, it had what can only be described as a pretty gaping bug in it. ---- The hbgaryfederal.com CMS was susceptible to a kind of attack called SQL injection. -------- -- Malaysia Open Source Software Conference 2011 MOSC2011 http://fb.me/mosc2011 _______________________________________________ Owasp-Malaysia mailing list [email protected] https://lists.owasp.org/mailman/listinfo/owasp-malaysia OWASP Malaysia Wiki http://www.owasp.org/index.php/Malaysia OWASP Malaysia Wiki Facebook http://www.facebook.com/pages/OWASP-Malaysia-Local-Chapter/295989208420
