News (133)

Facebook banner ad serves an IE exploit

Unpatched PCs running Internet Explorer could fall victim to adware when visiting social networking site Facebook. Read more »

'Dangerous' Flash exploit can infect by stealth

A Flash flaw discovered this month could change the face of Web security by allowing criminals to infect users of any browser or operating system with malware — without making their browser or application crash. Read more »

Exploit code makes IE flaw more dangerous

The threat posed by a critical flaw in Internet Explorer has been ratcheted up by the release of a program designed to exploit the vulnerability, security researchers warned on Thursday. Read more »

Exploit code chases two Firefox flaws

Two vulnerabilities in the popular Firefox browser have been rated 'extremely critical' because exploit code is now available to take advantage of them. Read more »

Apple QuickTime exploit in the wild

Symantec has found active exploit code in the wild for an unpatched Apple QuickTime vulnerability. Read more »

Code to exploit Windows graphics flaw now public

A sample program hit the Internet on Wednesday, showing by example how malicious coders could compromise Windows computers by using a flaw in the handling of a widespread graphics format by Microsoft's software. Read more »

Web attackers get better at hiding

Cybercrooks who rig Web sites to break into PCs are getting better at hiding their malicious code, a security expert said this week. Read more »

Patch or get PWNED in a flash

Recently fixed vulnerabilities in Sun's Java Runtime Environment and Adobe's Flash player mean that unpatched systems are vulnerable and could be infected with spyware or recruited into a botnet by simply visiting a Web page with exploit code -- and Google last month warned that 10 percent of Web sites contain this kind of malicious code. Read more »

iPhone hacked in less than a month?

Apple's iPhone has been on the market for less than a month, but already researchers have claimed to have hacked the popular device. Read more »

Apple QuickTime zero-day flaw 'extremely critical'

Security research firm Secunia has reported what it calls an "extremely critical" vulnerability in media-streaming program Apple QuickTime. Read more »

More Browser, Exploit News Results

Features (24)

Clickjacking: Potentially harmful web browser exploit

Clickjacking has the potential to redirect unknowing users to malicious websites or even spy on them. We all need to be aware of clickjacking and how to avoid its trappings. Read more »

Safe browser an oxymoron?

In November 2003, the CERT Coordination Center first advised Web users to consider using a Web browser other than Microsoft Internet Explorer. Read more »

Using Perl to take control of HTTP caching

This article shows how to take advantage of HTTP caching and expiry features with the help of Perl. Read more »

What is cross-site scripting?

Cross-site scripting, also known as "XSS," is a class of security exploit that has gotten a fair bit of attention in the last few years. This article explains what it is and where the dangers lie. Read more »

Be proactive in your fight against malware

Mike Mullins discusses the merits of proactive security and explains why it's better to know whether a Web site is potentially harmful before you browse. Read more »

Why interactive site features can conflict with security

Interactive features on Web sites can offer great benefits to users, but may conflict with security concerns. We look at the ongoing war between interactive Web site features and better browser security. Read more »

The secrets of open source security

The Linux vs. Windows security debate is a contest of examples, which stand in place of the concepts that comprise a larger, more fundamental question of what the security benefits and detriments are for the open source and closed source development models. Read more »

Avoid security vulnerabilities in your CGI programs

CGI makes creating Web-executable programs quick and easy--both for you and for hackers. Learn about some of the explicit security vulnerabilities of CGI and how to avoid them. Read more »

Improve usability with friendly URLs

One of the many issues bandied about by Web developers is providing user-friendly URLs that are both friendly to the eyes and the fingers while typing. Read more »

Store dynamic page responses with output caching in ASP.NET

In ASP.NET, you can cache either an entire dynamic page or a portion of a page. Find out how to perform smart page caching based on a requesting URL, POST parameter, or query string. Read more »

More Browser, Exploit Features Results

Video (1)

Play!
See how iPhone exploit works

A vulnerability has been discovered in the Safari browser of the iPhone, and this video is a brief demonstration of how it works. More details are set to be announced at this year's Black Hat security conference. Read more »

Blog (3)

The 2008 Trends and Threats to Internet security

Lana Kovacevic [blogs:webanatomy] -- I recently came across the IBM Internet Security Systems X-Force 2008 Mid-Year Trend Statistics report, which outlines issues affecting internet security, including application vulnerabilities, phishing, malware and spam. Read more »

Firefox 3's better performance and memory improvements

Staff [blogs:syslog] -- As beta 5 is due to come out next week, I take a look at some of the new features and improvements in Firefox 3. Read more »

QuickTime and Firefox combine for insecurity

Nick Gibson [blogs:byteclub] -- A vulnerability in Apple Software's QuickTime media player can be exploited to execute remote javascript code, or by tapping into Firefox's chrome engine can execute remote code of any kind. Read more »

Log in


Sign up | Forgot your password?

Blogs

RSS feed

What's on?