TMCnet News

Polyverse Thwarts PHP Vulnerabilities, WordPress Attacks
[August 22, 2018]

Polyverse Thwarts PHP Vulnerabilities, WordPress Attacks


Polyverse Corporation today announced its R&D project, Polyscripting, stops all PHP code injection and execution vulnerabilities detailed in a whitepaper recently released by Secarma Labs. Polyverse already provides the only Moving Target (News - Alert) Defense (MTD) technology proven to stop the most dangerous zero-day cybersecurity attacks. Polyscripting is the company's next solution in development.

"We have confirmed that Polyverse's Polyscripting approach will stop all unwanted PHP execution vulnerabilities in the Secarma whitepaper," said Polyverse CTO Archis Gore. "Polyscripting looks to the future and does what the patches don't - it stops the code execution vulnerabilities in their entirety."

Polyverse's first product, its polymorphic version of Linux, is the only MTD cybersecurity product proven by the U.S. Department of Defense to stop 100 percent of zero-day memory exploits.*

Polyscripting is a free, open source tool that applies a MTD strategy to the language of the three major open source web applications used by millions of people every day - WordPress, MediaWiki and Drupal.

"Polyscripting aims to dethrone code injection as the top security risk...by making the central component of code injection impossible, writes Polyverse Engineer Blue Gaston in Introducing Polyscripting - the beginning of the end of code injection.



Since 2010, the Open Web Application Security (News - Alert) Project (OWASP) Top 10 List identified code injection as the number-one most critical web application security risk.

The Polyscripting approach must be applied to each language in the stack. It will therefore not stop exploits that bypass PHP and execute other code in other languages, such as the Shell (sh, bash, csh, zsh, Powershell, etc.). Polyscripted shells are certainly on the Polyverse roadmap. For more about Polyscripting, click here.


About Polyverse

Polyverse's polymorphic version of Linux is the only Moving Target Defense cybersecurity product proven by the U.S. Department of Defense to stop 100 percent of zero-day memory exploits from buffer overflow bugs and the like. Polyverse eliminates the need for costly and disruptive panic patching through its constant scrambling of binary code throughout the entire programming stack. Polyverse runs by far the world's largest build farm with over 1 million build jobs a day. *In a recent U.S. Department of Defense study, Polyverse successfully defended against 100 percent of known zero-day memory exploit attacks, as well as attempts to create novel new attack patterns. Polyverse is trusted by global enterprise and government, including PlayNetwork, Plex, Mitre, U.S. Navy, and many others. Founded in 2015, Polyverse is led by co-founder and CEO Alex Gounares, who brings 25 years of senior leadership experience in the technology industry, holding CTO roles at AOL and Microsoft, and serving as Technology Advisor to Microsoft Chairman and Founder Bill Gates (News - Alert). To learn more visit https://polyverse.io and for the latest Polyverse news follow us on Twitter (News - Alert) @Polyverse_io or read our blog.


[ Back To TMCnet.com's Homepage ]