- Security
- By Catalin Cimpanu
- September 4th, 2015
Security Issues Fixed in OrientDB "Studio" Web Interface
OrientDB devs fix CSRF and click-jacking vulnerabilities
- Security
- By Ionut Ilascu
- May 30th, 2015
Blue Coat Patches SSL Visibility Appliance Against 4 Security Bugs
Risk of stealing user sessions and clickjacking
- Security
- By Ionut Ilascu
- May 19th, 2015
URL Spoofing in Safari Opens Door for Phishing Attacks
Flaw can be exploited on the latest versions of iOS and OS X
- Security Fixes and Improvements
- By Ionut Ilascu
- May 13th, 2015
WSO2 Identity Server Vulnerable to XSS and CSRF Attacks
Proof-of-concept exploit code published for each issue
- Security
- By Ionut Ilascu
- April 9th, 2015
Multiple Flaws Found in Motorola’s Surfboard SBG6580 Cable Modem
Attack exploits backdoor support account, CSRF and XSS flaws
- Security
- By Ionut Ilascu
- March 23rd, 2015
Account Hijacking Flaw Patched by Hilton Hotels in HHonors Website
Password changing is still not completely secure
- Security Fixes and Improvements
- By Ionut Ilascu
- March 17th, 2015
D-Link Patches Against Critical Remote Command and Code Execution Flaws
Both glitches can be exploited without authentication
- Security
- By Ionut Ilascu
- March 3rd, 2015
D-Link Fixes Router Flaws Following Public Disclosure
Company finds several other vulnerable products
- Security
- By Ionut Ilascu
- February 27th, 2015
Email-Based Pharming Attack Exploits Router Flaws
Only the primary DNS address points to rogue server
- Security Blog
- By Ionut Ilascu
- January 20th, 2015
GoDaddy Domains Exposed to Hijacking Due to CSRF Vulnerability
Domain registrar solves the problem without any delay
- Security
- By Ionut Ilascu
- December 4th, 2014
Critical PayPal Bug Left All Accounts Vulnerable to Hijacking
Several flaws exploited to take over PayPal accounts
- Security Blog
- By Eduard Kovacs
- February 10th, 2014
CSRF Vulnerability in Instagram Allowed Hackers to Make Private Profiles Public
Facebook has addressed the issue, but it took the company around 6 months to do it
- Security Fixes and Improvements
- By Eduard Kovacs
- November 12th, 2013
Vulnerabilities in RunKeeper Allowed Cybercriminals to Run XSS Worm
Portuguese security researcher David Sopas is the one who found the flaws
- Security Blog
- By Eduard Kovacs
- November 6th, 2013
CSRF Vulnerability in Twitter Allowed Hackers to Read DMs, Post Tweets
Twitter fixed the security hole within hours of being discovered
- Security Fixes and Improvements
- By Eduard Kovacs
- October 30th, 2013
Cybercriminals Exploit TP-Link Router CSRF Vulnerabilities to Hijack DNS Settings
Hackers can lure users to phishing sites, block updates and replace downloaded files
- Security
- By Eduard Kovacs
- September 16th, 2013
CSRF Vulnerability in eBay Allows Hackers to Hijack User Accounts – Video
The issue has been reported to eBay, but it's still unfixed
- Security Blog
- By Eduard Kovacs
- May 6th, 2013
Google Fixes CSRF Vulnerability in Translator and Clickjacking Flaw in Gmail – Video
Security researcher Prakhar Prasad is the one who identified the issues