Tag: xss

IBM plugs Tivoli MDM cross-scripting flaw 
By Juha Saarinen | Dec 3, 2014 | Comment Now 
Users told to upgrade to secure version.
 
eBay cross-scripting vulnerability exploited 
By Juha Saarinen | Sep 18, 2014 | Comment Now 
Auction site slow to respond.
 
Our wholly insecure web 
By Juha Saarinen | Jun 17, 2014 | Comment Now 
[Blog post] Time to re-engineer for security.
 
XSS behind a decade of bank hacks 
By Danielle Walker | Nov 15, 2013 | Comment Now 
Penetration testing research.
 
Yahoo! dumps t-shirt bug bounty for $15,000 cheques 
By Darren Pauli | Oct 3, 2013 | Comment Now 
Security engineer bought tees with own cash
 
NASDAQ slow to plug site vulns, pen tester says 
By Danielle Walker | Sep 18, 2013 | Comment Now 
Swiss pen testers report flaw.
 
$5k bug bounty paid for Google.com XSS 
By SC Australia Staff | Jul 31, 2013 | Comment Now 
Google Finance glitch.
 
'Shoddy' software leaves major holes in NSA site 
By Dan Raywood | Jul 2, 2013 | Comment Now 
Attackers could impersonate web traffic.
 
OWASP Top 10 released for 2013 
By Dan Kaplan | Jun 13, 2013 | Comment Now 
Injection, broken authentication/session management and cross-site scripting make up the top three spots.
 
Google ups bug bounty rewards 
By Marcos Colon | Jun 12, 2013 | Comment Now 
Gmail bugs worth $5000.
 
Twitter, Microsoft, LinkedIn, Yahoo open to hijacking 
By Darren Pauli | Mar 22, 2013 | Comment Now 
Cookie cockup permits account takeover.
 
Kim Dotcom's Mega details first wave of security bugs 
By Darren Pauli | Feb 12, 2013 | Comment Now 
Netted through bug bounty program.
 
Spammers stole Yahoo Xtra contact lists: exec 
 
Mega security bugs detailed 
By Darren Pauli | Feb 11, 2013 | Comment Now 
Serious bugs found.
 
PayPal's security works 
By Karen Epper Hoffman | Feb 5, 2013 | Comment Now 
PayPal's Andy Steingruebl knows security is not an insular task. By looking outside of its own walls, the company has taken the fight to the enemy, and helped everyone else in ...
 
XSS attacks boomed 
By SC Staff | Jan 31, 2013 | Comment Now 
Cross-site scripting (XSS) and SQL injection attacks remain the most prominent cyber attack method.
 
Hacker nabs Yahoo! site backups 
By Darren Pauli | Dec 17, 2012 | Comment Now 
Finds website flaws.
 
Researcher gains admin access to Kaseya, ManageEngine 
 
Researcher owns blue chip managed service platforms 
By Darren Pauli | Nov 18, 2012 | Comment Now 
Zero day dropped at #Kiwicon.
 
Microsoft fixes twin XSS, issues new cert requirement 
By Danielle Walker | Sep 13, 2012 | Comment Now 
Vulnerabilities aren't high-risk.
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
Who do you trust most to protect your private data?







   |   View results
Your bank
  38%
 
Your insurance company
  4%
 
A technology company (Google, Facebook et al)
  8%
 
Your telco, ISP or utility
  8%
 
A retailer (Coles, Woolworths et al)
  3%
 
A Federal Government agency (ATO, Centrelink etc)
  19%
 
An Australian law enforcement agency (AFP, ASIO et al)
  14%
 
A State Government agency (Health dept, etc)
  6%
TOTAL VOTES: 1893

Vote
Do you support the abolition of the Office of the Information Commissioner?