Saturday, September 6th, 2008 Researchers have created a proof-of-concept application for Facebook that turned the machines of people who added the app to their Facebook page into a botnet that launched denial-of-service attacks on a victim server in a demonstration."Social Network Web sites have the ideal properties to become attack platforms," according to a ...
Posted in Internet, Privacy, Security | No Comments
Monday, August 11th, 2008 Say hello to a new security tool called “Surf Jack” which demonstrates a security flaw found in many public sites. The proof of concept tool allows testers to steal session cookies on HTTP and HTTPS sites that do not set the Cookie secure flag. I’ve been working with two banks ...
Posted in Internet, Linux, Networking, Privacy, Security, Windows | No Comments
Sunday, August 10th, 2008 A security researcher at the Defcon hacker conference in Las Vegas on Saturday demonstrated a tool he built that allows attackers to break into your inbox even if you are accessing your Gmail over a persistent, encrypted session (using https:// versus http://).When you log in to Gmail, Google's servers will ...
Posted in Internet, Privacy, Security | No Comments
Wednesday, August 6th, 2008 The researcher who first discovered a motherlode of stolen enterprise user names and passwords in June has found that nearly 9,000 of them are bank and credit-card account credentials from around the world that were grabbed by an old but crafty botnet. And it turns out the initial 50 gigabytes' ...
Posted in Internet, Networking, Privacy, Security | No Comments
Thursday, July 31st, 2008 This is a pretty old issue, but this is an interesting new implementation of an old idea. Using your browser history and by matching your browsing habits the site attempts to guess your gender with a weighting system according to the gender demographics for a list of fairly popular sites.It’s ...
Posted in Internet, Privacy, Security | No Comments
