Hacker Safe or not? Read on, watch the video and vote now!

Written by Dimitris Pagkalos

Monday, 28 April 2008

Russ McRee brought up again his concerns about the Hacker Safe issue with his latest blog post titled "Still not Hacker Safe, roll the video". Me and Kevin are also annoyed with the fact that McAfee's ScanAlert service is, as Russ pointed out, more like fraudulent marketing fluff than a worthy expense for websites. What do YOU think?

Google Groups vulnerable to cross-site scripting

Written by Dimitris Pagkalos

Sunday, 27 April 2008

mox has discovered a critical XSS (script insertion) vulnerability in Google Groups.

Barack Obama's official site hacked

Written by Dimitris Pagkalos

Friday, 18 April 2008

mox has just submitted a critical script insertion vulnerability affecting my.barackobama.com - Barack Obama's official social networking site for his supporters.

Symantec Internet Security Threat Report (ISTR Volume XIII) highlights

Written by Dimitris Pagkalos

Tuesday, 15 April 2008

Symantec has released on April 8th the most recent and very interesting Internet Security Threat Report (ISTR Volume XIII). Concerning the metric for site-specific XSS vulnerabilities, data is provided by us and is limited to the XSS issues that security researchers submit to the archive.

New eNom XSS vulnerability

Written by Dimitris Pagkalos

Monday, 14 April 2008

CCC submitted a critical XSS vulnerability affecting eNom.com - the second largest domain name registrar and web hosting company.

XSS SEO poisoning attacks on the rise. How to protect against?

Written by Dimitris Pagkalos

Monday, 31 March 2008

Malicious people spread malware by exploiting XSS vulnerabilities on high profile websites. More specifically they inject an IFRAME which loads malicious content from different IP sources around the globe.

older news...

22535 total xss 1167 fixed 1220 xss onhold 387 EW subscribers