GamaSec Announced Zero Day Project To Fight Explosion in Web Attacks

Aug. 13, 2009 - PRLog -- Two data security firms have announced a new project to help fight the explosion in web site attacks.  Tel-Aviv –based GamaSec and Nevada-based Data Clone Labs have formed The Zero Day project, a partnership to protect data and fight cyber crime by scanning web sites for application hazards, and on research into so-called “zero-day attacks.”  

“Zero-day” in the vernacular of cyber security is term for security flaws that do not have a patch available from the developer, and are therefore among the most dangerous threats.  “The Zero Day Project will become a resource to the security community as it identifies these attacks, and develops advanced counter-measures,” said Ira Victor, Zero Day Project Director. Recently, CNN.com, WashingtonPost.com, ImageShack.com, and other sites have all reportedly been victim to web attacks that resulted in the sites being blacklisted, or defaced.

Many web sites today are also vulnerable to web drive-by downloads. Web drive-by downloads are hidden threats that attack unsuspecting visitors to web sites. These attacks can by-pass firewalls, anti-virus software, and can break into Windows, Mac and Linux systems. Most web drive-by downloads are located on legitimate web sites that have been secretly booby-trapped by attackers.

The Zero Day Project’s web application vulnerability scanner does automated searches for security weaknesses in web applications and produces a detailed report with instructions for mitigating the threats.  The Zero Day Project scans for known and as yet un-documented web site hazards.

Avi Bartov, GamaSec CEO comments, "Application vulnerabilities are the Achilles heel in the protection of websites. Well-known web sites that get attacked make the headlines, but lesser-known web sites are also being attacked, and they have even fewer resources to recover the lost traffic and reputation.”

About

The Zero Day Project fights web threats and cyber crime. http://ZeroDayProject.com

Nevada-based Data Clone Labs is a leading provider of data security and compliance services that helps organizations navigate security and regulatory waters. http://www.DataCloneLabs.com

GamaSec's unique technology has been developed through experience gained in large scale worldwide security projects; GamaSec is active in security research and a pioneer in the field of vulnerability identification and definition. This allows GamaSec to be among the first and fastest at locating new vulnerabilities and mitigating new threats.Israel-based Gamasec’s web application vulnerability scanning does automated search for security weaknesses in web applications and produces a detailed security report with recommendations for optimally matched solutions. http://www.GamaSec.com

# # #

Gamasec’s web application vulnerability Scanning does automated search for security weaknesses in web applications and produces a detailed security report with recommendations for optimally matched solutions.

GamaSec identifies application vulnerabilities ( e.g. Cross Site Scripting (XSS), SQL injection, Code Inclusion etc.. ) as well as site exposure risk, ranks threat priority, produces highly graphical, intuitive HTML reports, and indicates site security posture by vulnerabilities and threat exposure.