Saturday, June 14th, 2008
Cross-Site Scripting (XSS) is an attack that's pretty basic to detect, pretty basic in execution, and you'd think that it would be rather simple to understand. Unfortunately this is apparently not the case. I won't go into the details of Cross-Site Scripting because others have beat that to death - ...
Posted in Coding, Internet, Privacy, Security | 1 Comment
Friday, June 13th, 2008
In recent months, Web site compromises have become the most prevalent problem that threatens Internet users from all over. While this trend continues to dominate today’s security issues, let’s not forget about other threats that, although may be not as massive as these attacks, have equally serious ramifications against the ...
Posted in Coding, Internet, Privacy, Security | No Comments
Thursday, June 12th, 2008
The websites of three of the security industry's best-known companies include security flaws that could be used to launch scams against customers, according to a new report.
The report, from security watchdog site XSSed, verified 30 cross-site scripting (XSS) vulnerabilities across the sites of McAfee, Symantec and VeriSign. The flaws could ...
Posted in Coding, Internet, Privacy, Security | No Comments
Wednesday, June 11th, 2008
SIPVicious suite is a set of tools that can be used to audit SIP based VoIP systems. It currently consists of four tools:
svmap - this is a sip scanner. Lists SIP devices found on an IP range
svwar - identifies active extensions on a PBX
svcrack - an online password cracker for ...
Posted in Coding, Internet, Privacy, Security, Software | No Comments
Wednesday, June 11th, 2008
A hacker has posted attack code that exploits critical flaws in the Safari and Internet Explorer Web browsers.
The source code, along with a demo of the attack, was posted Sunday on a computer security blog. It can be used to run unauthorized software on a victim's machine, and could be ...
Posted in Coding, Internet, Privacy, Security, Windows | No Comments