SLAC Computer Security
Search SLAC

Computer Security News You Can Use (at Home too)

Exploit, Impact, and Response - (Cross Site Scripting Attack)

Title: Anatomy of an XSS Attack

Author: Russ McRee

Source: Infotec Writers

Date Published: 6th January 2009

 

Excerpt:

 

'....The following is a first-person narrative, written from the perspective of an attacker utilizing crosssite scripting (XSS) methodology combined with phishing. The intent is to describe motive, method, and consequence. As indicated in April's toolsmith, XSS is an epidemic. Sadly, it is rarely given its due; XSS is often considered an attack unworthy of much concern. Yet, it is an attack of great consequence, if utilized by a motivated attacker. Statistics claim that 90% of all websites have at least one vulnerability, and 70% of all vulnerabilities are XSS......'

 

To read the complete article see: http://www.infosecwriters.com/text_resources/pdf/RMcree_XSS.pdf

 

 

Title: Popular photo frames carry risk of infection

Source:San Francisco Chronicle, SFGate.com

Date Published: January 2, 2009

 

Excerpt:

Digital photo frames were one of the best-selling consumer electronics products this holiday season, but some of them carried a nasty surprise - malicious software code that tried to hop onto personal computers when the frames were plugged in.

To read the complete article see:

http://www.sfgate.com/cgi-bin/article.cgi?f=/c/a/2009/01/01/BUV9150IH8.DTL

Owner: SLAC Computer Security
Last Updated: 07/22/2010
Feedback: Please send to
Computer Security Feedback