Thursday, December 17th, 2009 Secure64, which specializes in products designed to support the domain name system (DNS), has released the product to help prevent a condition in which the server's local list of domain name mappings is corrupted. Attackers create this condition by pretending to be another DNS server responding to a DNS query.One ...
Posted in Hardware, Internet, Networking, Security | No Comments
Tuesday, December 1st, 2009 Here is a great video from Robert "RSnake" Hansen explaining what DNS Rebinding actually is and shows some various attacks that may be performed as a result of it. RSnake also explains what can be done to fix the problem and explains why it might not happen any time soon.DNS ...
Posted in Internet, Networking, Privacy, Security | No Comments
Friday, November 13th, 2009 Researchers have discovered a new attack that exploits the way browsers operate with Adobe Flash -- and there's no simple patch for it.The attack can occur on Websites that accept user-generated content -- anything from Webmail to social networking sites. An attacker basically takes advantage of the fact that a ...
Posted in Internet, Security | No Comments
Wednesday, October 28th, 2009 Scrawlr, developed by the HP Web Security Research Group in coordination with the MSRC, is short for SQL Injector and Crawler. Scrawlr will crawl a website while simultaneously analyzing the parameters of each individual web page for SQL Injection vulnerabilities. Scrawlr is lightning fast and uses our intelligent engine technology ...
Posted in Coding, Internet, Security, Software | No Comments
Saturday, October 10th, 2009 Most users ensure their Web sessions are using Secure Sockets Layer (SSL) before entering their credit card information, but less than half do so when typing their passwords onto a Web page, according to a new survey.Just what SSL does and doesn't do isn't clear to many users, and the ...
Posted in Internet, Privacy, Security | No Comments