Security log

03.04.2006
Security bookshelf

How to Break Web Software: Functional and Security Testing of Web Applications and Web Services, by Mike Andrews and James A. Whittaker (Addison-Wesley Professional, 2006).

With most vendors making their applications available via the Web, this is a timely book. A refresher is always welcome, and the authors provide examples of the newest types of Web hacks. This short book is packed with the most common and relevant attacks that security professionals and application designers need to be aware of. The best part? A CD-ROM that contains many of the tools described in the book.

-- Mathias Thurman

Trojan horse sellers sentenced

An Israeli couple convicted of developing and selling a Trojan horse program have both been sentenced. Ruth Brier-Haephrati was sentenced to four years in prison, and her husband, Michael Haephrati, to two. The couple sold the program to private investigators who used it to glean data from clients' business competitors. The couple was also ordered to pay 2 million shekels (US$428,000).