SEARCH RESULTS
 
Showing 1-9 of 9 records
1
 
Expand article

XSS Worm At Justin.tv Affects 2525 Profiles

2008-07-15 12:03:07 by CyberInsecure in CyberInsecure.com
 
A XSS worm was crawling across Justin.tv, the popular lifecasting platform at the end of June. The group that found the XSS vulnerability abused it as a proof of concept, until Justin.tv fixed the flaw rending the worms activities obsolete. Due to insufficient input sanitization of the location field on users profiles, the group could
 
Tags: tv, justin, xss worm, tv fixed, insufficient input sanitization, worms activities obsolete, location field, users profiles, xss vulnerability
 
 
 
 
Expand article

Congratulations to Justin Somaini

2008-03-11 03:07:54 by mcurphey in Mark Curphey - SecurityBuddha.com
 
My security friend Justin Somaini is the new CISO at Symantec. Now you are a big swinging dick in the valley you can buy me some fine wine over dinner next time. Seriously it was about time mate! Well done
 
Tags: time, fine wine, valley, symantec, dick, ciso, dinner
 
 
 
 
Expand article

Justin Somaini is Blogging

2008-09-25 17:57:35 by mcurphey in Mark Curphey - SecurityBuddha.com
 
My good friend Justin Somaini the CSO of Symantec is now blogging
 
Tags: friend justin somaini, symantec, cso
 
 
 
 
Expand article

Cloudsecurity.org Interviews Guido van Rossum: Google App Engine, Python and Security

The Article has images
2008-07-01 19:03:10 by Craig Balding in Cloud Security
...Justin Ferguson (a Seattle based security consultant) at eusecwest in London. He gave a great talk exploring security vulnerabilities in language interpreters and specifically highlighted some security weaknesses in Python App Engine. What are your thoughts on his research and specifically the Python issues he highlighted? When do you...
 
Tags: app engine, google app engine, app, app engine treatment, security, app engine project, app engine crew, secure app engine, security vulnerabilities
 
 
 
 
Expand article

Fake Porn Sites Serving Malware - Part Two

The Article has images
2008-07-08 03:24:00 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...justin/1913395886/1 porn-contact .com/lotte/1794233444/1 porn-party .net/nowell/850070721/1 worldbestadult .com/parthenia/1858633626/1 funpornsite .com/patience/188018581/1 adultsexpro .com/isse/1981168802/1 adultsexpro .com/isabelle/683364151/1 porndrive .net/erne/906935790/1 porn-power .net/delpha/178727494/1 porn-plus...
 
Tags: net, malware, porn-party, porn-contact, fake porn sites, porn-play, porn-plus, porndrive, pornhelp
 
 
 
 
Expand article

The Twitter Malware Campaign Wants to Bank With You

The Article has images
2008-08-05 07:14:42 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...Justin.tv , demonstrate that trivial vulnerabilities come handy for what's to turn into a major security incident if not taken care of promptly Related posts XSS The Planet XSS Vulnerabilities in E-banking Sites The Current State of Web Application Worms g0t XSSed Web Application Email Harvesting Worm
 
Tags: twitter, twitter malware campaign, xss, xss vulnerabilities, original twitter account, xss worms, xss worm, twitter users, worm
 
 
 
 
Expand article

Summarizing Zero Day's Posts for July

The Article has images
2008-08-08 14:35:52 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...Justin.tv infects 2,525 profiles 14. Remote code execution through Intel CPU bugs 15. Ringleader of cybercrime group to be offered a job as cybercrime fighter 16. Spam coming from free email providers increasing 17. Kaspersky's Malaysian site hacked by Turkish hacker 18. Georgia President's web site under DDoS attack from Russian hackers 19....
 
Tags: day, software, rogue security software, spam emails daily, cybercrime, cybercrime fighter, independence day campaign, emails, posts
 
 
 
 
Expand article

The Continuing Cheapening of the Word "Terrorism"

2008-08-19 06:09:17 by schneier in Schneier on Security
 
...Justin Dirico left eight threatening playing cards at the Pearisburg Wal-Mart on Saturday, August 9th. The cards read "9 people will die" and "9 people will suffer" with the date 8-15-08 A ninth card was found on a car at the Dairy Queen on Sunday, August 10th I've written about this sort of thing before
 
Tags: terrorism, water, people, water crisis, cards, giles county deputies, august 10th, county teenagers, terroristic threats
 
 
 
 
Expand article

Brad Pitt, Beyonce and Justin Timberlake top list of celebrity names most abused by malware writers

2008-09-17 00:00:00 by Ellen Messmer in Network World on Security
 
Brad Pitt, Mariah Carey and George Clooney are among the stars whose names are being most exploited across the Web to lure unwary fans into downloading wallpaper and screensaver software thats really malware in disguise
 
Tags: brad pitt, lure unwary fans, names, malware, screensaver software, mariah carey, george clooney, stars, wallpaper