Favorite Files

No favorite files added yet

Recent Posts

1. Comment - 'Day One' for Safari for Windows Becomes Zero-Day Nightmare

   (Jun 13, 2007 - 11:54 AM)

   The most important thing about this ENTIRE issue is that whatever stage of development this software is at, Apple has failed to do one of the most BASIC forms of vulnerability testing before releasing this software, FUZZING. Fuzzing is not that new, and is used constantly by company's and yet Apple who claims to be so in tune with security doesn't even bother to run a basic fuzzer against there browser before releasing it. It shows that Apple isn't acctually in the security mindset that they market they are.
   
   With all that said I'm not trying to hate on Apple, I use OS X at home, but Apple needs to learn how to handle security properly as they have a pretty bad track record up to this point. As the platform becomes more and more mainstream it is only going to come back and bite them if they don't sort out there handling of security properly.

2. Comment - Cross-Site Scripting Worm Hits MySpace

   (Oct 17, 2005 - 9:19 AM)

   It seems Yahoo is vulnerable to a similar XSS attack on it's My Yahoo website. I wonder how long it will be before someone writes a clever worm to exploit this vulnerability? http://www.alljer.com/yahoorssxss.htm has the full details