The protection of your web application should be on the agenda from the first line of code and is key to functional and secure operations, of the application in the future. We recommend Detectify who helped out Facebook, Google, PayPal, Dropbox and lots of others and here we outline what you need to do to improve the security of your applications.
We in Basefarm focus on secure operations of mission critical applications where security is naturally of great importance. To help our customers get the best solution we give advice on how to incorporate security already in the development phase, long before applications are launched.
We believe that there are no contradiction between fast development and high security. In cooperation with Detectify, we provide a thorough security check to reveal code vulnerabilities before they are discovered by hackers.
Detectify provides an online security scanner that automatically tests your web applications for 700+ vulnerabilities. The scanner is an easy to use tool for CSOs, CISOs, CIOs, CTOs, security engineers and developers also using devops.
Detectify was born from the simple idea that the internet was broken. The company’s founders, a team of top-ranked security experts, are on a mission to fix it.
“Security is not an afterthought, it should be considered from the first line of code. The best way to improve your security is to integrate it into your development process,” says Fredrik Nordberg Almroth, Detectify co-founder and security researcher.
As to systems already up and running, Almroth points out that understanding your web application’s security status is crucial. “The only vulnerabilities you can fix are those you are aware of. Working proactively with security and running scans on a regular basis will help you get secure and learn to write safer code,” he says.
Talk about security in a way that everyone in the organization understands. For non-IT colleagues, point out how good security can keep you ahead of competitors, increase customer loyalty and avoid negative PR induced by hackers. For the IT team show how security can be practically integrated into developer routines including sprints and agile work.
Go over your entire IT infrastructure and re-consider what kinds of facilities and services you need and how these fits internal processes.
Use during the development process and on a continuous basis when the application is up and running.
Map out your priorities before you run a security test. You will probably prioritize an e-commerce website that processes payments rather than your online store’s blog.
Detectify provides you with a threat score between 1 and 10 based on the standardized vulnerability scoring system CVSS. A high score signals an urgent need for fixing. Your findings will be divided into several parts colored green, yellow and red out of severity. Don’t get too nervous: go ahead and fix what you can and consult a Basefarm expert.
Security can easily be something “extra” which can be hard to prioritize. Turn your next web application development project into a security lighthouse project and establish a security culture for future and existing projects also.
Share results and best practices with your security team so the results won’t be wasted, and keep your findings away from those who do not need to know.
We look forward to a more secure world where web applications are protected and prepared for hacker attacks.
Published: 2021-06-11CVE-2021-3560 “A flaw was found in polkit. When a requesting process disconnects from dbus-daemon just before the call to polkit_system_bus_name_get_creds_sync starts, the process cannot get a unique uid and pid of the process and it cannot verify the privileges of the requesting process.” The error is not handled correctly and the request is granted […]
…or what happens if a link in a phishing e-mail is clicked? It is a hard question to answer because attackers usually implement filtering methods. For example: If you have an apple device you get directed to one place If two hours go by before you click the link, its sent to a different place […]
The year 2021 has seen several high profiled vulnerabilities being actively exploited in bigand popular software, including Microsoft Exchange and Solar Winds Orion. Experience shows that in some cases it is too late to patch even after a few days.Many organizations work with the guideline of patching within 30 days, if the vendor states theupdate […]
Published: 2021-03-02CVE-2021-26855CVE-2021-26857CVE-2021-26858 CVE-2021-27065 “Microsoft has detected multiple 0-day exploits being used to attack on-premises versions of Microsoft Exchange Server in limited and targeted attacks. In the attacks observed, the threat actor used these vulnerabilities to access on-premises Exchange servers which enabled access to email accounts, and allowed installation of additional malware to facilitate long-term access to […]
Basefarm has become aware of published news telling of Russian-accredited advanced persistent threat actors, given the name of Sandworm, having exploited Centreon IT monitoring software. Basefarm is aware that some news report mention Orange as on the customer-list of Centreon and while Basefarm is owned by Orange Business Services we would like to make it […]
Published: 2021-02-09MITRE CVE-2021-24074MITRE CVE-2021-24094MITRE CVE-2021-24086 “Microsoft released a set of fixes affecting Windows TCP/IP implementation that include two Critical Remote Code Execution (RCE) vulnerabilities (CVE-2021-24074, CVE-2021-24094) and an Important Denial of Service (DoS) vulnerability (CVE-2021-24086). The two RCE vulnerabilities are complex which make it difficult to create functional exploits, so they are not likely in the […]
Ransoms is sadly the trend these days. We want to share a cheap and effective way to enable prevention that most probably fail to consider. Using the ransomware simulator from KnowBe4, RanSim, we could see that our endpoints did no prevention previously. An easy way to minimize the attack surface for ransomware is to use […]
Published: 2021-01-26MITRE CVE-2021-3156 “The Qualys Research Team has discovered a heap overflow vulnerability in sudo, a near-ubiquitous utility available on major Unix-like operating systems. Successful exploitation of this vulnerability allows any unprivileged user to gain root privileges on the vulnerable host.” This is especially bad for multi-user environments where some users have login access, but […]
There is an ongoing news-story concerning SolarWinds and a supply chain attack used by an advanced threat actor to compromise victims with a rather advanced backdoor. Basefarm does not use this affected product, but are aware of at least one of our customer who do. We are working with the customer in question to mitigate […]
Published: 2020-12-08MITRE CVE-2020-17095 “A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system. To exploit this vulnerability, an attacker could run a specially crafted application on a Hyper-V guest that could cause the Hyper-V host operating system to […]
5 R’s for Cloud Migration 
Photo by Rido Alwarno from Pexels
Image by Glenn Carstens-Peters from Unspalsh
Image by David Mark from Pixabay
Image by Peter H from Pixabay
Mikael Karlsson
Image by Hermann Schmider from Pixabay
Image by Ervin Gjata from Pixabay
Image by adege from Pixabay