Free XSS flaws detection service
Cross-site scripting (XSS) errors are responsible for more than half of all web application vulnerabilities1. So, in this age of accountability and expectations for secure, …
EFF exposes extensive FBI violations
In 2009, the Electronic Frontier Foundation filed a suit against a number of federal agencies that deal with intelligence gathering, requesting that they release documents and …
Microsoft Windows MHTML XSS vulnerability
A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to conduct cross-site scripting (XSS) attacks, according to Secunia. The …
Week in review: Android malware, Facebook security features and Zuckerberg’s page hack
Here’s an overview of some of last week’s most interesting news and articles: Lush hack due to numerous security vulnerabilities The Web site of Lush, the natural …
Nmap 5.50 released
Nmap is a free and open source utility for network exploration or security auditing. A primary focus of the 5.50 release is the Nmap Scripting Engine, which has allowed Nmap …
Top cybercrime host and others get shut down
VolgaHost, the “World’s number one bad host”, has been taken offline on January 17th, reports malicious host-tracking outfit HostExploit. A few weeks before …
Spammers take advantage of the Facebook API bug?
It seems that high-profile accounts and Facebook pages might not be the only ones messed with by individuals taking advantage of the bug found in Facebook’s API. All …
Who’s watching you? Online fears revealed
Despite lingering concerns about the U.S. economic recovery, Americans worry more about having their online privacy violated (25%) than declaring bankruptcy (23%) or losing …
5 men busted in relation to Anonymous DDoS attacks
Five men believed to have taken part in recent Anonymous’ DDoS attacks have been arrested this morning during a series of raids coordinated by the Metropolitan Police …
Multiple vulnerabilities in Symantec products
Multiple vulnerabilities have been reported in Symantec products, which can be exploited by malicious people to cause a Denial of Service and compromise a vulnerable system, …
API bug responsible for Zuckerberg page hack
When at first Facebook didn’t issue a statement about what really happened on Mark Zuckerberg’s fan page and how someone managed to post a message in his name …
Worrying increase in surveillance across Europe
A landmark EU-wide study of national privacy safeguards shows a decline in privacy protection across Europe and a steep increase in state surveillance over the lives of …