UniSA, along with a global team of researchers, has developed a scanning tool that will make websites less vulnerable to hacking and cyberattacks.  

The black box security assessment prototype was tested by engineers in Australia, Pakistan and the UAE, and found that it was more effective than existing web scanners in detecting weaknesses in web applications.  

UniSA mechanical and systems engineer Dr Yousef Amer is one of the co-authors of the “SAT: Integrated Multi-agent Blackbox Security Assessment Tool using Machine Learning”, a paper on the development of the tool in the wake of escalating global cyberattacks.  

Cybercrime has cost the world $6 trillion in 2021, and the increase in the adoption of technologies has made people more connected and vulnerable in cyberspace than ever. 

Dr Yousef Amer and colleagues from Pakistan, the UAE and Western Sydney University highlighted the numerous security weaknesses in website applications and how these are costing organisations dearly.  

The widespread use of eCommerce, iBanking and eGovernment sites have allowed web applications to become prime targets for cybercriminals who want to steal individual and company information and disrupt business activities.  

Despite a projected $170 billion global outlay on internet security, Dr Amer stated that existing web scanners are falling way short when it comes to assessing vulnerabilities.  

“We have identified that most of the publicly available scanners have weaknesses and are not doing the job they should,” he said.  

WhiteHat Security, a world leader in web application security, revealed that 86 per cent of scanned web pages have on average 56 per cent vulnerabilities. The researchers of the study then compared 11 publicly available web application scanners against the top 10 vulnerabilities. 

“We found that no single scanner is capable of countering all these vulnerabilities, but our prototype tool caters for all these challenges. It’s basically a one-stop guide to ensure 100 per cent website security,” Dr Amer said.  

“There’s a dire need to audit websites and ensure they are secure if we are to curb these breaches and save companies and governments millions of dollars.”  

The researchers of the “SAT: Integrated Multi-agent Blackbox Security Assessment Tool using Machine Learning” are now seeking to commercialise their prototype.  

Source: UniSA Media Release. Content has been edited for style and length.

Eliza Sayon

Website | + posts

Eliza is a content producer and editor at Public Spectrum. She is an experienced writer on topics related to the government and to the public, as well as stories that uplift and improve the community.

• Developing an effective data ecosystem
• The journey of building an ecosystem through data
• NZ government strengthens data privacy laws against third parties
• eSafety Commissioner issues legal notice against Twitter