Browsing Category: Web Security

Categories: Web Security

Few people in the world know more about the internal workings of botnets, DDoS attacks and defense than Jose Nazario, a senior security researcher at Arbor Networks. Don’t miss his thoughts on why DDoS attacks are more prevalent in some regions than others and how to react if you’re attacked. Interviewed by Chris Hoff.

Read more...

Categories: Web Security

The SANS Internet Storm Center has a fascinating look [isc.sans.org] today at a recent incident in which a Web server was compromised through the use of a remote Web application flaw. The attack might have stopped there, but a series of cascading failures led to further problems and damage. It’s a classic boy-meets-server, boy-0wns-server tale.

Read more...

Categories: Web Security

By Christian Heinrich

The second Open Web Application Security Project (OWASP) Conference held on the Gold Coast is regarded as the leading Web Application Security conference within the Asia Pacific region attracting both Australian and overseas speakers and attendees.

The conference continued its community atmosphere with open discussions and sharing of ideas on Web Application Security during the various social events each night including a gala dinner.

Read more...

Categories: Web Security

Microsoft’s research unit is investing resources in a new Web browser that could eventually signal a shift away from the ubiquitous Internet Explorer.

According to a research paper released this week, the project is called Gazelle and is positioned as a secure web browser constructed as a multi-principal operating system.

Read more...

Categories: Web Security

Facebook and other social networks can be downright unfriendly when it comes to scam attempts. PC World’s JR Raphael has put together five attack scenarios and information on how to protect yourself and your Facebook friends.

Read more...

Categories: Web Security

Attention GMail and GTalk users:  There’s a major spam run underway with social engineering lures to steal your login cretentials.
This image shows a GMail message that purports to be an account termination warning from Google but, if a user is tricked into clicking on the link, he/she is redirected to a fake GMail page requesting the login credentials.

Read more...

Categories: Web Security

After years of lagging behind on important security features, Apple has finally added a malware-blocker, a phishing filter and support for EV (extended validation) certificates into the latest refresh of its Safari Web browser.

The malware roadblock headlines a list of Safari 4 security features that also includes cookie blocking, private browsing, secure encryption, safe downloads and parental controls.

Read more...