- By Catalin Cimpanu
- August 13th, 2009
CA eTrust Anti-Virus Update Horror
CA detects itself as malware after a botched update
- By Catalin Cimpanu
- August 13th, 2009
Security Flaw in eBay's Developer Program
eBay developers have been advised to immediately change their account passwords
- By Catalin Cimpanu
- August 12th, 2009
JCryption, a JavaScript Encryption Library
New JavaScript Encryption tool released
- By Catalin Cimpanu
- August 11th, 2009
Man-in-the-Middle HTTPS Attack Weak Point in Major Browsers
Man-in-the-middle attacks from Pretty-Bad-Proxy can break HTTPS connections
- By Lucian Constantin
- August 6th, 2009
Flaws in XML Libraries Put Countless Applications at Risk
Can be used to trigger denial of service or possibly execute arbitrary code
- By Lucian Constantin
- July 23rd, 2009
Adobe Flash Player Zero-Day Vulnerability Exploited in the Wild
The exploit can also come embedded into PDF documents
- By Lucian Constantin
- July 22nd, 2009
Wireless Routers Running DD-WRT Vulnerable
Remotely exploitable vulnerability can give attackers root access
- By Lucian Constantin
- July 20th, 2009
Feasible Client-Side CSRF Token Brute Force Attack Revealed
Uses three-year-old CSS-based history hack to extract tokens
- By Lucian Constantin
- July 20th, 2009
Newly Reported Firefox 3.5.1 Vulnerability Not Exploitable
Mozilla says potential attackers can't execute arbitrary code
- By Lucian Constantin
- July 16th, 2009
HTC Handheld Devices Affected by Critical Bluetooth Vulnerability
Remote attackers can read and download from or upload files to protected folders
- By Lucian Constantin
- July 15th, 2009
Critical Remote Code Execution Bug Affects Firefox
Enables attackers to perform drive-by attacks and distribute malware
- By Lucian Constantin
- June 19th, 2009
Nine-Ball Mass Injection Attack Makes over 40,000 Victims
Obfuscated rogue code serves flurry of exploits to unsuspecting visitors
- By Lucian Constantin
- June 18th, 2009
URL Obfuscation Not Properly Mitigated in Browsers
Safari users remain completely vulnerable to age-old phishing technique
- By Lucian Constantin
- May 9th, 2009
WorldPay Customers Targeted by Malware Distributors
Beware of fake invoice e-mails
- By Lucian Constantin
- April 29th, 2009
Two 0-Day Highly Critical Adobe Reader Vulnerabilities Disclosed
They allow for remote code execution through malformed PDF files
- By Lucian Constantin
- April 3rd, 2009
Trend Micro Rushes to Patch 0-Day Vulnerability
After a proof of concept exploit for its Internet Security product line has been released
- By Lucian Constantin
- March 27th, 2009
0-Day Exploit for Critical Firefox Vulnerability Released
Mozilla developers rush to ship out a patch