Security  

 

Avira Website XSSed

Cross-site scripting vulnerabilities affecting several pages of an Avira-controlled website have been disclosed
by Lucian Constantin, February 25th, 2009
 

Adobe Releases Critical Flash Player Update

Several flaws facilitating remote code execution, clickjacking attacks and privilege escalation have been addressed
by Lucian Constantin, February 25th, 2009
 

Adobe Reader Critical Flaw Still Exploitable with JavaScript Disabled

An unofficial patch has been released by a security researcher
by Lucian Constantin, February 25th, 2009
UK's National Lottery Website Vulnerable to SQL Injection

UK's National Lottery Website Vulnerable to SQL Injection

by Lucian Constantin, February 24th, 2009
A hacker claims to have gained access to the user database table
 

Critical Flaw Found in Proxy Servers

It can facilitate unauthorized remote access to internal resources
by Lucian Constantin, February 24th, 2009
 

Bitdefender Concludes Investigation into Security Incident

The company claims that no sensitive information has been accessed
by Lucian Constantin, February 23rd, 2009
 

Kaspersky's Website Open to Cross-Site Scripting

XSS vulnerabilities in several pages have been disclosed
by Lucian Constantin, February 23rd, 2009
 

Major Data Breach at the University of Florida

The personal information of over 97,200 people dating back to 1996 could have been compromised
by Lucian Constantin, February 21st, 2009
Symantec Denies SQL Injection – Hacker Disagrees

Symantec Denies SQL Injection – Hacker Disagrees

by Lucian Constantin, February 20th, 2009
The AV vendor tags the SQL injection as ineffective, prompting the attacker to release more evidence
 

Adobe Reader 0-Day Critical Vulnerability Exploited in the Wild

Malicious PDF files are used to execute arbitrary code on system running fully-patched Reader and Acrobat versions
by Lucian Constantin, February 20th, 2009
 

Travel Agency Website for Gov Workers Hacked

The website was being used for malware distribution
by Lucian Constantin, February 19th, 2009
 

Sensitive Document Leaking Archive Leaks Its Own Private Data

Wikileaks leaks its donors' e-mail address
by Lucian Constantin, February 19th, 2009
 

Symantec Website Hacked

Blind SQL injection vulnerability disclosed
by Lucian Constantin, February 19th, 2009
 
Want more? Browse: