Sponsored White Papers, Webcasts, and Downloads
ZDNet Resources
- Webcam hijack demo highlights clickjacking threat
- [ UPDATE: The details are out. Lots of unresolved clickjacking issues] A security researcher in Israel has released a demo of a "clickjacking" attack, using an JavaScript game to turn every browser into a surveillance zombie. The release of the demo follows last month's...
- Tags: Webcam, Click, Web Browser, Twitter, Raff, Games, Web Browsers, Security, Personal Technology, Internet, Ryan Naraine
- Blog posts 2008-10-07
- Google Chrome vulnerable to carpet-bombing flaw
- Google's shiny new Web browser is vulnerable to a carpet-bombing vulnerability that could expose Windows users to malicious hacker attacks. Just hours after the release of Google Chrome, researcher Aviv Raff discovered that he could combine two vulnerabilities -- a flaw in Apple Safari WebKit and a...
- Tags: Google Inc., Apple Safari, Web Browser, Flaw, Raff, Microsoft Windows, Web Browsers, Security, Operating Systems, Software, Internet, Ryan Naraine
- Blog posts 2008-09-02
Additional Resources
- Western Digital debuts 2TB, 7200RPM enterprise-class hard drives
- Western Digital on Tuesday announced that it is now shipping 2TB, 7200RPM enterprise-class desktop hard drives with WD's 500 gigabytes-per-platter technology. The company's family of Caviar Black drives (pictured, below) is intended for gaming, high-performance desktop systems and workstations; while the 2TB WD...
- Tags: Hard Drive, Performance, Positioning, High-performance, Western Digital Corp., Branding, Leadership, Performance Management, Processors, Marketing, Management, Human Resources, Workforce Management, Semiconductors, Hardware, Components, Andrew Nusca
- Blog posts 2009-09-01
- Developer calls for Apple to eliminate App Store review process
- Good ideaWe do not have app stores for computer software. There are no such stores for PCs nor Macs nor Windows Mobile phones. I guess apple wanted to ensure that iphone experience will be always safe and clean but at this point they should just give up and maybe create...
- Tags: Smart phones, app store, Apple Inc., Apple iPhone, T&C
- Discussion threads 2009-08-25
- Intel says big question mark on business IT recovery
- Intel says big question mark on business IT recoveryi think soi think companies will be needing technical people so badly they will have no choice but to hire the riff raff available because they laid off all the hardworking people who already built up years of good knowledge about their...
- Tags: business-IT, question mark, Intel Corp.
- Discussion threads 2009-07-29
- Coming in July: Month of Twitter Bugs
- A well-known security researcher plans to use the month of July to expose serious vulnerabilities in the Twitter ecosystem. The Month of Twitter Bugs, a project which launches on July 1, is the handiwork of Aviv Raff left, a researcher known for his work on Web-based security...
- Tags: Vulnerability, Twitter, Aviv Raff, Web 2.0, Security, Internet, Ryan Naraine
- Blog posts 2009-06-15
- StrongWebmail CEO's mail account hacked via XSS
- A Webmail service that touts itself as hack-proof and offered $10,000 to anyone who could break into the CEO's e-mail has lost the challenge. A trio of hackers successfully compromised the e-mail using persistent cross-site scripting XSS vulnerability and are now claiming the bounty. ...
- Tags: XSS, CEO, E-mail, Online Communications, Ryan Naraine
- Blog posts 2009-06-04
- Twitter API ripe for abuse by web worms
- A security researcher is warning that the Twitter API can be trivially abused by hackers to launch worm attacks. The red-hot social networking/microblogging service has been scrambling to plug cross-site scripting and other Web site vulnerabilities to thwart worm attacks but, as researcher Aviv Raff points out,...
- Tags: Web, API, Worm, Twitter, Twitpic, Cyberthreats, Viruses And Worms, Security, Ryan Naraine
- Blog posts 2009-05-26
- Patch Tuesday heads-up: 8 bulletins, 5 critical
- Microsoft plans to ship 8 security bulletins next Tuesday (April 14, 2009) to fix remote code execution and denial of service vulnerabilities affecting Windows, Office and Internet Explorer. According to the company's Patch Tuesday advance notice, five of the bulletins will be rated...
- Tags: Denial Of Service, Flaw, Microsoft Internet Explorer, Microsoft Corp., Bulletin, Web Browsers, Security, Internet, Ryan Naraine
- Blog posts 2009-04-09
- Opera sings the security blues
- Guest editorial by Aviv Raff If you ask any Opera fanboy, he will tell you that Opera is the most secured browser. Well frankly, it really is a good and secure browser, implementing many restrictions that other browsers simply ignore. For example, while...
- Tags: Internet, Opera Software ASA, Resource, Ryan Naraine, Security, Vulnerability, Web Browser, Web Browsers
- Blog posts 2008-10-30
- On Opera patch day, a new zero-day flaw
- On the same day Opera shipped a browser update with patches for three separate security vulnerabilities, hackers are openly discussion a new zero-day flaw that exposes Windows users to remote code execution attacks. With Opera 9.61, the Norwegian browser maker corrects an issue where History Search could...
- Tags: Execution Attack, Internet, Opera Software ASA, Ryan Naraine, Web Browser, Web Browsers, Zero-day Bug
- Blog posts 2008-10-22
- Google readying fix for Chrome file download flaw
- Just hours after the release of the Google Chrome browser last month, researcher Aviv Raff discovered that he could combine two vulnerabilities -- a flaw in Apple Safari WebKit and a Java bug -- to trick users into launching executables direct from the new browser. (Here's a demo showing how...
- Tags: Google Inc., Flaw, Google Chrome, Security, Ryan Naraine
- Blog posts 2008-10-20
- Google ignores some reported security problems?
- Aviv Raff posted a public disclosure of a minor security risk that could be a major problem if used in conjunction with another type of problem. It's true that his discovery isn't really one that by itself should keep you up at night, but it's one that I'm surprised...
- Tags: Google Inc., Security, Garett Rogers
- Blog posts 2008-10-11
- iPhone hits another security speedbump
- Apple's ongoing struggles with poor security-related design choices have extended to the iPhone. According to security researcher Aviv Raff, everyone's favorite mobile device is vulnerable to two separate security weaknesses that expose millions of users to phishing and spamming attacks. [...
- Tags: Apple iPhone, Apple Inc., Image, Spamming, Spam, Security, Spam And Phishing, Ryan Naraine
- Blog posts 2008-10-06
- Adobe moves to nuke 'clipboard hijack' attacks
- Adobe has announced plans to modify the next version of its Flash Player to use an "allow/deny" system to mitigate clipboard hijack attacks. The change will be fitted into the final version of Flash Player 10 to demand user interaction when a Shockwave (.swf) file attempts to...
- Tags: User Interaction, Adobe Systems Inc., Macromedia Flash Player, Attack, Keyboards, Security, Hardware, Peripherals, Ryan Naraine
- Blog posts 2008-09-19
- Gates and Seinfeld - Part Deux
- Gates and Seinfeld - Part DeuxMy wifeSaid that the ad seemed demeaning - some rich guys deigning to live with the riff-raff.You just don't get it...These ads are absolutely hysterical! I was literally ROTFLMAO from these ads. My rep sent me the talking points before the ad was aired, pointing...
- Tags: Jerry Seinfeld, advertisement, Part Deux, Seinfeld, Microsoft Corp.
- Discussion threads 2008-09-12
- Google patches 'critical' Chrome code execution flaws
- The first security patch for Google's new Chrome browser is out, fixing at least two "critical" vulnerabilities that put Windows users at risk of code execution attacks. [ SEE: Google Chrome vulnerable to carpet-bombing flaw ] The patch, which is rolled out automatically via...
- Tags: Google Inc., Risk, Vulnerability, Patch Management, Web Browser, Flaw, Security, Strategy, Management, Ryan Naraine
- Blog posts 2008-09-08
- Google Chrome vulnerable to carpet-bombing flaw
- Google Chrome vulnerable to carpet-bombing flawjust proves that no software can ever be without any flawsntmore typical ZDnet FUDChrome prevents access to user folders including the desktop using permissions. R-E-A-S-E-A-R-C-HRE: Google Chrome vulnerable to carpet-bombing flaw"Raff’s code shows how a malicious hacker can use a clever social engineering lure...
- Tags: Microsoft Windows, Web browsers, SECURITY, Google Chrome, Google Inc., carpet-bombing flaw, flaw
- Discussion threads 2008-09-02
- Adobe Flash ads launching clipboard hijack attack
- Malicious hackers are using booby-trapped Flash banner ads to hijack clipboards for use in rogue security software attacks. In the Web attacks, which target Mac, Windows and Linux users running Firefox, IE and Safari, hackers are seizing control of the machine's clipboard and using a hard-to-delete URL...
- Tags: Adobe Systems Inc., Advertisement, Attack, Security, Ryan Naraine
- Blog posts 2008-08-18
- Where on earth are these Microsoft patches?
- Lost in the shuffle of this month's Patch Tuesday barrage is the fact that a critical vulnerability in the ever-present Windows Media Player WMP was not fixed "because of a last minute quality issue." Microsoft originally listed the WMP update in the advance notice for August but,...
- Tags: Vulnerability, Patch Management, Microsoft Internet Explorer, Microsoft Corp., Microsoft Windows, Web Browsers, Operating Systems, Software, Internet, Ryan Naraine
- Blog posts 2008-08-14
- << Previous
- page 1 of 1
- Next >>
White Papers and Webcasts
A simplified IT environment isn't just less complex. It's also more reliable. Standardize on a single Linux platform with SUSE Linux Enterprise from Novell, and get the world's most interoperable Linux
Doc delivers the scoop on today's enterprise content management, printer maintenance, and all other issues related to document management. It's the DocuMentor Blog.
