Microsoft releases security update for DoS issue in ASP.NET: DHS Open Source Infrastructure Report Jan. 4th
Wednesday, January 4th, 2012Microsoft rushed to release an out-of-band security update to resolve a denial-of-service (DoS) issue that affected ASP.NET versions 1.1 and later on all supported variants of the .NET framework. A large number of Web platforms are affected by the hash collision problem, but the company was among the first to act on it. The MS11-100 [...]
Autocomplete feature leaves browsers vulnerable: DHS Open Source Report Oct. 26th
Wednesday, October 26th, 2011Since it is possible to get key up and key down events through JavaScript when a drop-down autocomplete menu is displayed, an ill-intended cybervillain can steal arbitrary values from a browser’s autocomplete feature, Softpedia reported October 25. Researchers from Minded Security Labs believe most browsers are susceptible to the attack. The proof of concept, unfortunately, [...]
Steve Jobs charity fund e-mail hides casino payment site: DHS Open Source Report Oct. 25th
Tuesday, October 25th, 2011The latest spam e-mail that has been circulating after the passing of the head of Apple Inc. promises a great opportunity for young programmers who can be helped by a small donation on the recipients part, Softpedia reported October 24. The message entitled “Raise money for Steve Jobs Charity Fond!” reveals in bad English that [...]
Sesame Street hacked, porn posted: DHS Open Source Report Oct. 18th
Wednesday, October 19th, 2011The Sesame Street channel on YouTube, a popular stop on the Internet for preschool children, was attacked by a hacker October 16 who deleted all videos from the channel, modified its design, and posted graphic porn to it. It took Google about 22 minutes to take down the offensive content, according to The Next Web. [...]
Cyber-criminals targeting retailers with ‘Nice Pack’ exploit kit, SQL Injection: DHS Open Source Report Oct. 17th
Monday, October 17th, 2011Criminals have increased their attacks on retailer Web sites using exploit kits to download data-stealing Trojans on victims’ computers, eWeek News reported October 13. Retailers have seen an uptick in Web attacks driven mainly by malware exploit toolkits as cyber-criminals attempt to steal credit card information, according to Dell SecureWorks. It said hacking attacks against [...]
« Previous Entries