Browsing Category: Web Security

Categories: Web Security

In this Network World interview at SOURCE Boston, well-known hardware hacker Joe ‘Kingpin’ Grand talks about lessons rom the “Prototype This” show, the changing face of security research and his upcoming vulnerability assessment work.  The video also includes an interview with Dan Kaminsky about his DNS vulnerability.

Read more...

Categories: Web Security

Few people in the world know more about the internal workings of botnets, DDoS attacks and defense than Jose Nazario, a senior security researcher at Arbor Networks. Don’t miss his thoughts on why DDoS attacks are more prevalent in some regions than others and how to react if you’re attacked. Interviewed by Chris Hoff.

Read more...

Categories: Web Security

The SANS Internet Storm Center has a fascinating look [isc.sans.org] today at a recent incident in which a Web server was compromised through the use of a remote Web application flaw. The attack might have stopped there, but a series of cascading failures led to further problems and damage. It’s a classic boy-meets-server, boy-0wns-server tale.

Read more...

Categories: Web Security

By Christian Heinrich

The second Open Web Application Security Project (OWASP) Conference held on the Gold Coast is regarded as the leading Web Application Security conference within the Asia Pacific region attracting both Australian and overseas speakers and attendees.

The conference continued its community atmosphere with open discussions and sharing of ideas on Web Application Security during the various social events each night including a gala dinner.

Read more...

Categories: Web Security

Microsoft’s research unit is investing resources in a new Web browser that could eventually signal a shift away from the ubiquitous Internet Explorer.

According to a research paper released this week, the project is called Gazelle and is positioned as a secure web browser constructed as a multi-principal operating system.

Read more...

Categories: Web Security

Facebook and other social networks can be downright unfriendly when it comes to scam attempts. PC World’s JR Raphael has put together five attack scenarios and information on how to protect yourself and your Facebook friends.

Read more...

Categories: Web Security

Attention GMail and GTalk users:  There’s a major spam run underway with social engineering lures to steal your login cretentials.
This image shows a GMail message that purports to be an account termination warning from Google but, if a user is tricked into clicking on the link, he/she is redirected to a fake GMail page requesting the login credentials.

Read more...