Subscribe via feed.

[papers] – DOMSDAY – Analyzing a Dom-Based XSS in Yahoo!

Posted by deepcore under exploit, hhu, m$, Security, XSS (No Respond)

DOMSDAY – Analyzing a Dom-Based XSS in Yahoo!

Tags: , , , ,

Killing passwords and whistleblowing hackers: top stories you need to read

Posted by deepquest under Apple, m$, Security (No Respond)

Passwords are safe. Hackers have nefarious motives

Tags: , , , ,

[papers] – CVE-2012-1535: Adobe Flash Player Integer Overflow Vulnerability Analysis

Posted by deepcore under exploit, hhu, m$, XSS (No Respond)

CVE-2012-1535: Adobe Flash Player Integer Overflow Vulnerability Analysis

Tags: , , , ,

Senator: Amazon.com pulls plug on WikiLeaks site after inquiries – Puget Sound Business Journal (blog)

Senator: Amazon.com pulls plug on WikiLeaks site after inquiries Puget Sound Business Journal (blog) Days after reports emerged that the WikiLeaks website had found safe haven in Amazon.com's…

Tags: , ,

LulzSec hack Sony and Nintendo: Microsoft next?

Posted by deepcore under Privacy, Security (No Respond)

Telegraph.co.uk LulzSec hack Sony and Nintendo: Microsoft next? International Business Times Sony's PSN crisis began in mid-April when a group of, as yet unidentified, hackers breached the tech-giants online security. The attack left as many as 100 million PlayStation customers account and billing information compromised and forced Sony to ..

Tags: , , , ,

Post-PSN: Nintendo share Sony’s hacking plight – IBTimes

Posted by deepcore under Privacy, Security, Sony (No Respond)

Reuters India Post- PSN : Nintendo share Sony's hacking plight IBTimes The attack was reportedly intended to demonstrate the ongoing weakness of Sony's online security even after the company's post-PSN crisis reforms. The PSN crisis occurred after a similar but unidentified group targeted Sony's PlayStation Network .

Tags: , , , ,

Microsoft Warns Of ASP.Net Vulnerability In The Wild – Cryptographic Padding Attack

Posted by deepcore under m$ (No Respond)

There seems to be a fairly serious attack being exploited in the wild that targets vulnerable ASP.Net web applications, so far there is a temporary fix but no official announcement on when a patch will be issued. The next scheduled patches should be pushed out on October 12th. If you had set up your server […]

Tags: , , , , , ,

Hackers Strike Back Against Microsoft

Posted by deepquest under m$ (No Respond)

Angered by Microsoft’s recent criticism of third-party security researchers, a group of hackers says it will begin anonymously releasing proof-of-concept exploit code for Microsoft vulnerabilities in retaliation.

Tags: ,

Microsoft, Adobe, Oracle unite with massive patch batch

Posted by deepquest under m$, Security (No Respond)

It was an extreme version of Patch Tuesday as Microsoft, Adobe Systems, and Oracle released updates that fixed dozens of critical vulnerabilities in their wares.

Tags: , , ,

Hackers exploit second DirectShow zero-day using thousands of hijacked sites

Posted by deepquest under m$, Security (No Respond)

Thousands of legitimate Web sites hacked over the weekend are launching drive-by attacks using an exploit of a second critical unpatched vulnerability in Windows’ DirectShow component, a Danish security company said today.According to CSIS Security Group, the bug is in an ActiveX control, the “msvidctl.dll” file, that streams video content.

Tags: ,