New URL Coming, Update Your Feed
On Monday, February 5 "Speaking of Security" the RSA Blog and Podcast will have a new URL. The new URL for "Speaking of Security" will be http://www.rsa.com/blog
SEARCH RESULTS
 |  |
 |  |
 |  |
 |
Showing 1-10 of 359 records
| |
| |
| |
|
Google adwords fuel new URL attack
Google adwords account holders are being targeted by criminals out to trick them into handing over credit card information using a clever URL spoof that has gained popularity in recent weeks
| |
| |
| |
|
Basic Flaws Allow Phishing And Spamming Vulnerabilities In iPhone
Security researcher Aviv Raff has discovered a pair of basic design flaws that could allow malicious phishing and spamming attacks on your iPhone. According to an advisory from Raff, the iPhones Mail and Safari applications are susceptible to a URL Spoofing vulnerability which allow attackers to conduct phishing attacks. iPhone Mail and Safari...
| |
| |
| |
|
Automating web application security testing
...URL and send it to the victim via email or any other mode of communication. When the victim visits the tampered link, the page is loaded along with the injected script that is executed in the context of the victim's session
The general principle behind preventing XSS is the proper sanitization (via, for instance, escaping or filtering) of...
| |
| |
| |
|
Make sure it's really Microsoft Update
...URL obfuscation to get you to a Microsoft Update imposter site. F-Secure is credited with finding the bad site , and there are lots of details on their blog site
Finnish anti-virus firm F-Secure warned Friday that a new malware-laced Microsoft Update page has appeared in the wild and is hosted on a URL that incorporates the actual Microsoft...
| |
| |
| |
|
Crimeware in the Middle - Zeus
2008-04-24 04:37:46 by HASH0x8ae4648 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...URL-redirection (at feyk sites, etc.) c task redirect the simplest terms (for example: only when GET or POST request, in the presence or absence of certain data in POST-request
Transparent HTTP (S) substitution content (Web inzhekt, which allows a substitute for not only HTML pages, but also any other type of data). Substitution of sets with...
| |
| |
| |
|
Minimizing the Attack Surface, Part 2
...URL that references the DWR framework, e.g
dwr/call/plaincall/myMethod1 /dwr/call/plaincall/myMethod2 /dwr/call/plaincall/myMethod3
But then youd have to update the whitelist every time you added or removed functionality from your application. Also, dont lose sight of the security goal, which is to minimize the amount of exposed third-party...
| |
| |
| |
|
Man, I Hate Spam
...URL from being submitted in the URL and Comments fields of my site. You can put your name and a comment, but any attempt to put in a URL or place a link within your comment will cause the site to accept your request, but do nothing with it. I don't want to throw an exception that may tip the mindless spammers off and cause them to try some...
| |
| |
| |
|
Phishing Holes
...URL is going to take you to
http://www.somebank.com/welcome.aspx?p=http%3A%2F%2Fwww.somebank.com%2Flogin.aspx
If you answered www.somebank.com/welcome.aspx, youre right. But if you answered www.somebank.com/login.aspx, youre also right. How can both of these be true? Because the page www.somebank.com/welcome.aspx redirects the user to...
| |
| |
| |
|
Saving NGO Security Scenario Videos
...URL of the video displayed. Click the Copy to Clipboard button (this copies the YouTube video URL to your clipboard
Go to the keepvid.com site. (There are a number of Web sites and programs that can save YouTube videos to your PC. Google save youtube for more options
Paste the YouTube video URL saved in your clipboard to the text box at the...
 |