Site Scanner detects XSS vulnerabilities to proactively defend websites from hackers.
(WEB HOST INDUSTRY REVIEW) — Given the all too crippling experience of having one’s site hacked, Web host and domain registrar Go Daddy (www.godaddy.com) has launched Site Scanner, a proactive defense mechanism designed to shield sites from hackers and malware.
According to Go Daddy’s Tuesday announcement, the product is designed to help website owners stay on top of their website’s security, with a daily scan, a threat-assessment scorecard and an email summary. Website operators can add a visual, date-stamped, trusted security seal to show that their site is secure.
“If a website has a weakness, an attacker will find it sooner rather than later,” Go Daddy chief executive officer and founder Bob Parsons said in a statement. “Go Daddy created Site Scanner to give our customers an affordable way to discover issues with their websites before the hackers do.”
At least 71 percent of websites, according to the latest WhiteHat Website Security Statistics Report, are at risk for Cross-Site Scripting or “XSS” vulnerabilities, which allow attackers to bypass client-side security mechanisms normally imposed on Web content by modern browsers, enabling an attacker to gain elevated access privileges to sensitive page content, session cookies, and a variety of other information maintained by the browser on behalf of the user.
XSS is the most common vulnerability on the Web, and is often used by hackers to target unsuspecting websites, even the most basic ones, in order to steal information, deface the site or infect visitors.
Site Scanner’s daily scan is summarized in a simple scorecard that categorizes issues as “Critical,” “Warning” or “Informational” based on the Common Vulnerability Scoring System, the industry standard for assessing computer vulnerabilities.Users can receive email notification of their scan results or login to the online dashboard to view their scorecard.
The Site Scanner dashboard lets users drill down into data for more detailed information on any discovered vulnerabilities and see suggested courses of action to fix the problem.
All Site Scanner customers can also contact Go Daddy’s Customer Security Advisers, a dedicated team of world class security experts available to answer questions and provide solutions. Many customers and small businesses rely on Go Daddy as their personalized security department, providing more in-depth explanations and information as needed. Go Daddy was recently nominated as a finalist in the 2010 SC Magazine Awards for Best Security Team, an honor given to companies that execute and manage strong security programs.
Site Scanner users also benefit from having a trusted seal to display on their site, showing visitors that their site is secure. When the website is free from known vulnerabilities, the seal is updated with the date of the most recently passed scan, and the seal remains visible as long as the vulnerabilities that caused the failed scan are addressed within 72 hours.
According to Go Daddy, Site Scanner offers a similar level of protection to competitors, and is available at $9.99 per month, a fraction of the price of competing solutions such as McAfee Secure at $70 per month, and Comodo Hacker Proof at $191 per month.
No related posts.
