Sponsored White Papers, Webcasts, and Downloads
ZDNet Resources
- Twitter hit by multiple variants of XSS worm
- Twitter hit by multiple variants of XSS wormYou're behind the times...This has already hit the /. community two days ago and most of the talk has been the usual "tar & feather" kind for the 17 year old that had created this particular worm. Especially given that at least...
- Tags: Cyberthreats, Viruses and worms, SECURITY, worm, XSS worm, multiple variant, XSS, Twitter
- Discussion threads 2009-04-14
- XSS worm at Justin.tv infects 2,525 profiles
- XSS worm at Justin.tv infects 2,525 profilesThe virus is impossible to findI see that they needed a proof of concept argument to have it studied then fixed.All computer problems stem from virus.Re: The virus is impossible to findXSS worms propagate using a site-specific vulnerability to do so. Fixing the vulnerability...
- Tags: Cyberthreats, Viruses and worms, SECURITY, XSS worm, XSS, worm, PoC
- Discussion threads 2008-07-14
Additional Resources
- Scareware scammers hijack Twitter trending topics
- Researchers from F-Secure and Sophos are reporting on an ongoing scareware serving campaign abusing the popular micro-blogging service Twitter. Hundreds of tweets using four different URL shortening services are currently spammed through the automatically registered Twitter accounts, relying on a pseudo-random text generation using Twitter's trending topics....
- Tags: Twitter Inc., Spamming, Spam, Cyberthreats, Viruses And Worms, Security, Spam And Phishing, Dancho Danchev
- Blog posts 2009-09-23
- IE8 outperforms competing browsers in malware protection -- again
- A recently released study by NSS Labs is once again claiming that based on their internal tests, Microsoft's Internet Explorer 8 outperforms competing browsers like Google's Chrome, Mozilla's Firefox, Opera and Apple's Safari in terms of protecting their users against "socially engineered malware" and phishing attacks. Not...
- Tags: Malware, Microsoft Internet Explorer, Web Browser, IE8, Spyware, Adware & Malware, Cyberthreats, Viruses And Worms, Security, Dancho Danchev
- Blog posts 2009-08-19
- Does Twitter's malware link filter really work?
- Today, researchers from F-Secure stumbled upon a long-anticipated feature in Twitter's fight against malicious abuse of its service - a malware URL filter preventing automatically registered or compromised legitimate accounts from tweeting known malicious links. Whenever a Twitter user is attempting to post a link to a...
- Tags: Malware, Twitter, Cyberthreats, Spyware, Adware & Malware, Viruses And Worms, Security, Dancho Danchev
- Blog posts 2009-08-03
- Coming in July: Month of Twitter Bugs
- A well-known security researcher plans to use the month of July to expose serious vulnerabilities in the Twitter ecosystem. The Month of Twitter Bugs, a project which launches on July 1, is the handiwork of Aviv Raff left, a researcher known for his work on Web-based security...
- Tags: Vulnerability, Twitter, Aviv Raff, Web 2.0, Security, Internet, Ryan Naraine
- Blog posts 2009-06-15
- The Web's most dangerous keywords to search for
- Which is the most dangerous keyword to search for using public search engines these days? It's "screensavers" with a maximum risk of 59.1 percent, according to McAfee's recently released report "The Web's Most Dangerous Search Terms". Upon searching for 2,658 unique popular keywords and phrases across 413,368...
- Tags: Search Engine Optimization, Web, Cybercriminal, Keyword, Search, Marketing Research, Marketing, Dancho Danchev
- Blog posts 2009-05-27
- Twitter API ripe for abuse by web worms
- A security researcher is warning that the Twitter API can be trivially abused by hackers to launch worm attacks. The red-hot social networking/microblogging service has been scrambling to plug cross-site scripting and other Web site vulnerabilities to thwart worm attacks but, as researcher Aviv Raff points out,...
- Tags: Web, API, Worm, Twitter, Twitpic, Cyberthreats, Viruses And Worms, Security, Ryan Naraine
- Blog posts 2009-05-26
- French hacker gains access to Twitter's admin panel
- UPDATE2: Twitter confirms the unauthorized access. UPDATE: The Twitter admin hack appears to be the result of a successful social engineering attack against one of Twitter's employees -- similar attack took place in January this year. Here's a retrospective of the events that took place. ...
- Tags: Hacker, Twitter, Attack, Hacking, Security, Dancho Danchev
- Blog posts 2009-04-30
- Twitter worm author gets a job at exqSoft Solutions
- UPDATE: Mikeyy Mooney of Stalk Daily gets Hacked. Here's more info. Now that was so fast that even Owen Thor Walker AKILL and Michael Calce Mafiaboy should envy the short cybercrime-to-job offer cycle here. 17 years old Mikeyy Mooney, the author/spreader of StalkDaily/Mickeyy XSS worm that exploited...
- Tags: Job, Web, XSS, Web Application, Worm, Twitter, Cloud Computing, Cyberthreats, Channel Management, Security, Viruses And Worms, Marketing, Dancho Danchev
- Blog posts 2009-04-17
- News to know: Intel, Skype IPO, Microsoft netbooks, EMC
- Here are today’s notable headlines. You can get News To Know via email alert and RSS daily. For continuous updates see BNET’s around-the-Web tech coverage. Sam Diaz: Intel: The bottom is in for PC demand Larry Dignan: eBay: We're spinning Skype off in an...
- Tags: Larry Dignan, Skype Technologies S.A., Microsoft Corp., EMC Corp., Sam Diaz, Netbook, Intel Corp., Netbooks, Nettops & MIDs, IPO, Web 2.0, Hardware, Financial Services, Internet
- Blog posts 2009-04-15
- Twitter: Can it make security a priority?
- Twitter has been schooled by a 17-year-old hacker over a generic worm that has plagued the social messaging site.  The big question: Can Twitter take security seriously as it wrestles with uptime issues. Dancho Danchev has a nice dissection of Twitter's worm issues. Twitter was hit with at...
- Tags: Twitter, Dancho Danchev, Cyberthreats, Spyware, Adware & Malware, Security, Viruses And Worms, Larry Dignan
- Blog posts 2009-04-14
- Twitter hit by multiple variants of XSS worm
- During the weekend and early Monday, at least four separate variants of the original StalkDaily.com XSS worm hit the popular micro-blogging site Twitter, automatically hijacking accounts and advertising the author's web site by posting tweets on behalf of the account holders, by exploiting cross site scripting flaws at the site....
- Tags: Flaw, XSS, Worm, Twitter, www.StalkDaily.com, Mikeyy XSS, Cyberthreats, Viruses And Worms, Security, Dancho Danchev
- Blog posts 2009-04-14
- Four XSS flaws hit Facebook
- Project XSSed, the clearing house for cross site scripting flaws has just released details on four flaws affecting Facebook's developers page, iPhone login page and the new users registration page, potentially assisting malicious attackers into adding more legitimacy to their campaigns. With yet another critical XSS flaw hitting Facebook in...
- Tags: Social Networking, Facebook, Flaw, XSS, Malware, Social Engineering, Security, Dancho Danchev
- Blog posts 2008-12-15
- News to know: Intel; Oracle; Microhoo; iPhone; Online video
- Notable headlines: Dancho Danchev: Remote code execution through Intel CPU bugs Nate McFeters: Symantec says Microsoft Access ActiveX attacks to increase Robin Harris: FTP: untrustworthy file transfer Dennis Howlett: Enterprise 2.0 looking more like 1.0? Dana Blankenhorn:...
- Tags: Apple iPhone, Oracle Corp., Online Video, Video, Microsoft Corp., Intel Corp., 3G, Corporate Communications, Cellular Phones, Wireless, Consumer Electronics, Personal Technology, Marketing, Larry Dignan
- Blog posts 2008-07-15
- XSS worm at Justin.tv infects 2,525 profiles
- A XSS worm was crawling across Justin.tv, the popular lifecasting platform at the end of June, details of the incident emerged in the middle of last week. Basically, the group that found the XSS vulnerability abused it for the purpose of generating the following graph as a proof of concept,...
- Tags: Vulnerability, XSS, Worm, Security, Dancho Danchev
- Blog posts 2008-07-14
- Multiple Facebook vulnerabilities reported on Full-Disclosure
- Jouko Pynnonen posted a message to the Full-Disclosure mailing list today, citing multiple "script injection" vulnerabilities within Facebook. I'm not sure if this is a surprise to anybody out there, it's certainly not to me, as numerous web applications have major problems with Cross-site Scripting vulnerabilities, but I think this...
- Tags: Facebook, Vulnerability, XSS, JavaScript, Microsoft Internet Explorer, Web Browser, Sandbox, JS, Canvas Page, Web Browsers, Internet, Nathan McFeters
- Blog posts 2008-07-02
- News to know: Microsoft's social bookmarking; Google vs. Viacom; Adventures in Linux; Facebook
- Notable headlines: Mary Jo Foley: Microsoft to showcase social bookmarking at TechEd Larry Dignan: Google: Viacom's YouTube lawsuit threatens DMCA. Full complaint. Techmeme Ed Bott: Why is fear-mongering such a popular security sales tactic? ...
- Tags: Google Inc., Facebook, Larry Dignan, Mobile, Social Bookmarking, Malware, Microsoft Corp., Viacom Inc., Cyberthreats, Spyware, Adware & Malware, Linux, Advertising & Promotion, Security, Viruses And Worms, Open Source, Operating Systems, Software, Marketing
- Blog posts 2008-05-27
- Snom VoIP phone vulnerability enables phone history theft, addy book poisoning, and more
- Fellow VoIP blogger and multi-skilled polymath Tom Keating picks up on security consultancy GNUCitizen.org's description of a security vulnerability in snom Technology's model 320 VoIP phone. GNUCitizen, in turn, found this via what they term a "side result" of a router hacking challenge...
- Tags: VoIP, Phone, Vulnerability, XSS, VoIP Phone, Snom, Telecom & Utilities, Russell Shaw
- Blog posts 2008-02-12
- MySpace to Apple: Fix that worm
- MySpace to Apple: Fix that wormBut this isn't Apple's fault!!![i]Apple said it has provided MySpace with the temporary fix.[/i]All the Mac zealots said that this was a MySpace flaw. If so, why is Apple providing a fix?Typical of Apple to release inherently insecure products. This is the second time they've...
- Tags: Corporate communications, Digital music, E-mail providers, Digital media, Cyberthreats, web request, www.myspace.com, User B, NonZealot, MySpace, Apple QuickTime, Google Gmail, Apple Inc., video, Web
- Discussion threads 2006-12-05
- << Previous
- page 1 of 1
- Next >>
Popular Sanity Saver Videos
White Papers and Webcasts
When you transition from your existing Red Hat environment to SUSE Linux Enterprise from Novell, you can recognize dramatic cost savings, perhaps as much 50%
Doc delivers the scoop on today's enterprise content management, printer maintenance, and all other issues related to document management. It's the DocuMentor Blog.
