Blue Core Research
Contact Us

Author: Eyal Kalderon

  • WordPress Attack detection

    WordPress Attack detection

    On Sunday morning, we got an anomaly alert. It was March 19, 2023. This story is about what happened. Background The Blue Core Research website uses WordPress (a free and open-source content management system). WordPress usually uses MySQL as a backend database, and our installation is no different. While our WordPress doesn’t contain sensitive data,…

  • Risk Calculator

    Risk Calculator

    Estimate the risk of a data breach in your organization. By providing some information specific to your organization you will get an immediate estimate of the risks you are facing. Risk parameters How many people are in your organization? Number of employees Enter the number of employees in your company. Or, more accurately, the number…

  • Database security – self assessment

    The following questionnaire will help you evaluate the strength of your database security. It takes about 5 minutes to complete it and at the end you’ll get a score along with an email containing the results with detailed explanations.

  • Costa Rica Hack

    Costa Rica Hack

    Introduction When I first heard the news, my first thought was – how can a hacker group breach so many systems across so many government agencies so quickly? My answer was simple: they cannot. The inevitable conclusion is that they have infiltrated the government systems for months, if not years, waiting for the time they…

  • SQL Injection

    SQL Injection

    Introduction SQL Injection is one of the most well-known attack vectors and it poses a significant security challenge. The only way to understand the benefits and deficiencies of each solution is to understand the problem and the approach each solution uses to solve it. The Problem The best way to understand the problem is by…

  • Database Auditing Requirements

    Many customers need to define requirements but building a good requirement document for database auditing is not simple. The reason is that customers who are new to the world of database auditing you are unlikely to be aware of the pitfalls and limitations products have and produce requirement documents that don’t protect them from such…