Saturday Mar 13

Online Status

We have 6 guests online

Major IE8 Flaw Makes 'safe' Sites Unsafe


ie8The latest version of Microsoft's Internet Explorer browser contains a bug that can enable serious security attacks against websites that are otherwise safe.

The flaw in IE 8 can be exploited to introduce XSS, or cross-site scripting, errors on webpages that are otherwise safe, according to two Register sources, who discussed the bug on the condition they not be identified. Microsoft was notified of the vulnerability a few months ago, they said.

Ironically, the flaw resides in a protection added by Microsoft developers to IE 8 that's designed to prevent XSS attacks against sites. The feature works by rewriting vulnerable pages using a technique known as output encoding so that harmful characters and values are replaced with safer ones. A Google spokesman confirmed there is a "significant flaw" in the IE 8 feature but declined to provide specifics.
Tags:

Read more: Major IE8 Flaw Makes 'safe' Sites Unsafe

 

FBI and SOCA Plot Cybercrime Smackdown


fbiThe FBI and the UK’s Serious and Organised Crime Agency have drawn up a program for dismantling and disrupting cybercrime operations. The effort relies on a better understanding of the business models of carders, malware authors and hacker groups which have increasingly come to resemble those of legitimate businesses.

The three prong strategy aims to target botnet and malware creators, so-called bullet-proof hosting providers that offer hosting services to cybercrooks, and digital currency exchanges. Digital currency exchanges such as WebMoney and Liberty Reserve are central to the operation of the black economy, according to Andy Auld, head of intelligence at SOCA’s e-crime department.
Tags:

Read more: FBI and SOCA Plot Cybercrime Smackdown

Shaolin Strikes Back at Online Hacker Attacks


The abbot of Shaolin Temple, which is famous worldwide for its kungfu prowess, defended his monastery Monday amid cyber-attacks and a new round of accusations over its growing commercialization.

templeShaolin strikes back at online hacker attacks

"We all know Shaolin has kungfu," said Shi Yongxin in an interview broadcast online with a website affiliated with the People's Daily.

"Now there is kungfu on the Internet," said Shi, referring to an earlier cyber-attack on Shaolin's website.

A hacker on Nov 11 replaced the website's front page with a mock letter of remorse in Shi's name. The fake post accused the monk of commercializing the 1,000-year-old temple during his 10 years at its helm.
Tags:

Read more: Shaolin Strikes Back at Online Hacker Attacks

More Articles...

Page 1 of 4