- Location
XSS
"-
BT Has Decided to Dump The Service in Favour of Its Own BT Mail Platform
Jun 3, 2013BT, one of Yahoo's biggest customers for its Yahoo Mail service, has decided to dump the service in favour of its own BT Mail platform, which will be run by US messaging specialist Critical Path. Yahoo Mail accounts have been given ...
Tags: BT, Yahoo, Account Hijackings
-
PayPal Has Denied Him a Reward for Finding a Vulnerability in Its Website
May 30, 2013A 17-year-old German student contends PayPal has denied him a reward for finding a vulnerability in its website. Robert Kugler said he notified PayPal of the vulnerability on May 19. He said he was informed by email that because he is ...
Tags: Computer Products, software
-
Sophos Has Released an Update for The Software Used on Its Web Gateway Security Appliance
Apr 4, 2013Security vendor Sophos has released an update for the software used on its Web gateway security appliance in order to address three serious vulnerabilities in the product's Web-based user interface. The vulnerabilities could allow ...
Tags: Web Security Appliance, Security, Computer Products, web, Security vendor
-
The New File-Storage and Sharing Service Mega Claims to Have Fixed Seven Vulnerabilities
Feb 18, 2013One week after launching a security bug bounty program, the new file-storage and sharing service Mega claims to have fixed seven vulnerabilities, none of which met its highest severity classification. Since Mega was launched three weeks ...
Tags: Mega, security bug, file-storage, file-sharing
-
Mega File-Sharing Service Has Launched a Vulnerability Reward Program
Feb 17, 2013The Mega file-sharing service has launched a vulnerability reward program that will pay up to 10,000 euros (around $13,600) for every serious security flaw found in the platform and reported responsibly. The rules of the program were laid ...
Tags: Mega, file-sharing service, vulnerability reward program
-
Dotcom Threw a Large Launch Party for Mega on Sunday
Jan 23, 2013While the world’s online sharing community is excited about Kim Dotcom’s bold new venture, the file-storage and sharing service Mega, it is already drawing criticism from security researchers, who advise not to trust it. The ...
-
A Patch Released by Yahoo for a Serious Email Vulnerability Did Not Fix The Problem
Jan 11, 2013Security researchers say a patch released by Yahoo earlier this week for a serious email vulnerability did not fix the problem, leaving users at risk. The cross-site scripting flaw was found by Shahin Ramezany, who goes by the nickname ...
Tags: Marissa Mayer, patches, Yahoo, email, security
-
A Typical Web Application Is The Target of an Attack at Least One in Three Days on Average
Dec 31, 2012A typical Web application is the target of an attack at least one in three days on average,according to a report released by data security firm Imperva. The third edition of Imperva's semi-annual Web Application Attack ...
-
A Hacker Is Selling a $700 Zero-Day Exploit for Yahoo Mail
Dec 31, 2012A hacker is selling a$700 zero-day exploit for Yahoo Mail that lets an attacker use a cross-site scripting(XSS)vulnerability to steal cookies and hijack accounts. The hacker,known as"TheHell",created a video to market the exploit on an ...
Tags: hacker, Yahoo mail
-
Technology Firms Including Google Websites Were Hit by a Hack Attack in Pakistan
Dec 31, 2012Technology firms including Google,Apple,eBay and Yahoo were among almost 300 companies whose websites were hit by a hack attack in Pakistan. The attack,which exploited vulnerabilities in domain name systems(DNS)to redirect ...
Tags: Googl, Technology firms, attack in Pakistan
-
Cyber Crime Has Continued to Become More Professional in 2012
Dec 28, 2012Cyber crime has continued to become more professional in 2012, with the barriers to entry becoming ever lower with the emergence of increasingly powerful toolkits and exploits for sale online. In the past year, cyber criminals have used ...
Tags: Protection, Cyber Crime, Products
-
Alentus Announced Its Partnership with GamaSec, a Remote Online Website Security Scan
Dec 27, 2012HERZELIA, ISRAEL, July 12, 2012 /24-7PressRelease/ -- Alentus announced today its partnership with GamaSec, a remote online website security scan service. GamaScan identifies web application vulnerabilities, provides real-time vital ...
Tags: Alentus, GamaSec, online website security scan service
-
ICO to Investigate Claims Tesco's Website Does Not Offer Sufficient Privacy Protections
Dec 27, 2012The Information Commissioner's Office is to investigate claims that Tesco's website does not offer sufficient privacy protections to customers. The UK privacy watchdog's probe comes after security experts raised a number of privacy ...
Tags: watchdog, Tesco Website, privacy protections, security problems
-
SQL Injection Attacks Rose 69% in The Second Quarter of 2012
Dec 26, 2012SQL injection (SQLi) attacks rose 69% in the second quarter of 2012 compared with the previous quarter, according to the latest report from secure cloud hosting firm FireHost. FireHost said that, between April and June, it blocked nearly ...
Tags: SQL injection, SQLi attacks, FireHost, secure cloud hosting
-
Most Firms Have Inadequate Defences for Web Applications,a Study Has Revealed
Dec 21, 2012Most firms have inadequate defences for web applications, a study has revealed. The reason is that defences tend to be geared around attack averages, said Amichai Shulman, chief technology officer at security firm Imperva. But the ...
Tags: web applications, Web Application Attack, web security, Internet
