Here's some key stories that unfolded this week in security:
YouTube Victim of XSS Attack
On Sunday YouTube fell victim to a XSS attack redirecting users to different sites from fake anti-virus pages to porn to Canadian pharmacy. Google patched up the problem relatively quickly but the backlash on Twitter was tremendous. Here's some great posts by SecTechno, The Register, and the SunBelt Blog.
Adobe Launch Function Still Vulnerable
Adobe fixed the Launch function vulnerability...or did they? Turns out this can still be exploited pretty easily. Check out our blog post on the topic, and also check out the Didier Stevens post to prevent the vulnerability.
Movie Sites Hosting Malware
The Secure Home Networks blog reports on 425 domains leading to malware, all related to illegal movie downloads. While it's risky to download movies illegally anyway, for any number of reasons, it's nice to know the bad guys are still setup in this zone as well.
Other Interesting Posts
Targeted Attacks with Excel Files
Redirect on Event
New SQL Injection Making Rounds?
Blogs focused on Web Security and Converged Threats
Twitter Updates
Labels
- banking (1)
- blackhat seo (1)
- blogger (1)
- botnets (5)
- cybersecurity (1)
- firefox (1)
- fraud (1)
- malicious sites (2)
- malware (4)
- misc (1)
- phishing (1)
- scam (3)
- security apps (3)
- twitter (1)
- web security (3)
- websense (2)
