Web application hacks


How I Taught the Senate To Hack

What happens when 20-something Beltway wonks put down their Blackberries and start getting real about hacking? Chris Wysopal can tell you. The security expert and former L0pht member is just back from D.C., where he took on the job of teaching Senate staffers on the Homeland Security and Governmental Affairs Committee about SQL injection, spear phishing and more.

Sony Darkens Another Network As Breach Investigation Widens

Sony Corp. took further steps to contain a serious data breach: temporarily shuttering the Website of Sony Online Entertainment and station.com, another of the technology company’s online gaming networks, even as it signaled the slow return of its PlayStation Network to operation.

iTunes Users Puzzle, Fume Over Account Hacks

Terry Coffey of Anchorage, Alaska, said that he first became aware of a problem with his iTunes account when he received a receipt for a $50 iTunes gift card purchase. Coffey, who says he’s careful with his money, was immediately suspicious and investigated the charge, but couldn’t find any record of it on any of his credit card statements. A closer look at his iTunes account revealed why: unknown assailants had seized control of his account and modified the credit card information associated with it. A different credit card number had been used, listing and Coffey’s address had been changed from Anchorage to a city in Tennessee. The fraudulent credit card account was used to purchase the gift card as well as a single iTunes song, Coffey said.


Subscribe to our newsletter, Threatpost Today!

Get the latest breaking news delivered daily to your inbox.