Zeljka Zorz
Amazon Seller Central vulnerable to XSS
To demonstrate that the Amazon Seller Central password reset page is vulnerable to an XSS attack, a regular submitter to the XSSed.com website has injected an iFrame tag that …
FakeAV peddlers targeting computer professionals
Malware peddlers have a general preference for compromising legitimate sites in order to distribute their malicious wares. Sometimes it is easier to compromise an already …
Facebook introduces one-time passwords
For all those who simply must access Facebook from a public computer, the social network introduced the option of receiving a one-time password to be used instead of their …
Long-awaited jailbreaking tool released
Greenpois0n, the jailbreaking tool whose release was eagerly awaited by the jaibreaking community, and the wait for which was even misused by malware peddlers, was finally …
A foolproof drive-by-download blocking tool?
A seemingly foolproof tool for blocking drive-by-download attacks has been developed by a group of researchers at the Georgia Institute of Technology and California-based SRI …
CISSP Study Guide
The title of the book is self-explanatory - this is a study guide for all of you out there who aspire to become a Certified Information Systems Security Professional. …
Google’s Gmail security checklist
Every now and then, Google adds tools and issues warnings that are meant to help its users feel and stay safe while using their offerings – the recent warning to Gmail …
Rogue Facebook app takes over accounts
A flurry of statuses saying “OMG! Im never going to send another text message again after seeing this!” and “OMG! Im not txtin again now that I have seen …
Future malware will steal behavioral and relationship patterns
Whenever something of tangible value exist, there will always be those who will try to steal it, says a group of international researchers that recently published a paper on …
Trojan overrides Firefox password-saving behavior
A curious new information-stealing Trojan that patches a core Firefox file in order to override the browser’s behavior has been discovered by Webroot researchers. Every …
Spammers using new URL obfuscation technique
Spammers and scammers are always on the lookout for new tricks to use to bypass URL filters and deliver the links to unsuspecting victims, and lately they have discovered that …
Twitter “wrong credential combination” phishing scheme
If you have followed a link on a Twitter message from a contact that says “You have to be the first to see these new pictures!! LINK” and entered you username and …
Featured news
Sponsored
Don't miss
- Overlooked essentials: API security best practices
- SubSnipe: Open-source tool for finding subdomains vulnerable to takeover
- Void Banshee APT exploited “lingering Windows relic” in zero-day attacks
- SYS01 info-stealer pushed via Facebook ads, LinkedIn and YouTube posts
- ChatGPTriage: How can CISOs see and control employees’ AI use?