Tuesday, April 21st, 2009
Firefox 3.0.9 fixes several security issues found in Firefox 3.0.8:
Firefox allows Refresh header to redirect to javascript: URIs
POST data sent to wrong site when saving web page with embedded frame
Malicious search plugins can inject code into arbitrary sites
Same-origin violations in XMLHttpRequest and XPCNativeWrapper.toString
XSS hazard using third-party stylesheets and XBL bindings
Same-origin violations ...
Posted in Internet, Linux, Privacy, Security, Software, Windows | No Comments
Saturday, April 18th, 2009
Security researchers are warning administrators to secure their servers in the wake of new Secure Shell (SSH) attacks.
Researchers at security firm SANS warned that so-called 'brute force' attacks were occurring on a "daily" basis. The attacks attempt to guess usernames and passwords in an attempt to compromise the server.
To help ...
Posted in Internet, Linux, Networking, Privacy, Security | No Comments
Wednesday, April 15th, 2009
Thousands of Web sites have been rigged to deliver a powerful piece of malicious software that many security products may be unprepared to handle.
The malicious software is a new variant of Mebroot, a program known as a "rootkit" for the stealthy way it hides deep in the Windows operating system, ...
Posted in Internet, Privacy, Security, Windows | No Comments
Wednesday, April 15th, 2009
Hackers have crossed into new frontiers by devising sophisticated ways to steal large amounts of personal identification numbers, or PINs, protecting credit and debit cards, says an investigator. The attacks involve both unencrypted PINs and encrypted PINs that attackers have found a way to crack, according to the investigator ...
Posted in Hardware, Internet, Privacy, Security | No Comments
Thursday, April 9th, 2009
Most web application security experts frown on the practice of passing session or authentication tokens in a URL through the use of URL rewriting. Usually these tokens are passed between the server and the browser through HTTP cookies, but in cases where users configure their browsers to not accept cookies, ...
Posted in Coding, Internet, Security | No Comments
