Last year Microsoft caused annoyance with a furtively installed Firefox add-on. With the update for its Search Enhancement Pack the vendor has now slipped unaware Firefox users another add-on
Source: The H Security
Archive for June, 2010
Attackers have embedded an exploit for the recent vulnerability in Flash Player in tens of thousands of web sites. The hacked web servers are Microsoft Internet Information Server and ASP.NET-based
Source: The H Security
Facebook has, for weeks, been plagued by a security flaw which, so far, it has been unable to fix and more and more exploits are coming into circulation. The latest of them promises the 101 hottest women in the world and displays an image of Jessica Alba
Source: The H Security
In recent years we have become used to selling our soul for access to useful online services, usually in the form of intimate data. The new Firefox synchronisation platform from Mozilla however, will ensure that the server operators have no access to my data
. Source: The H Security
Personally I think it’s great that somebody takes steps against collecting more information.
Several hundred thousand Facebook users are said to have fallen victim to a click-jacking attack by inadvertently clicking on a hidden “Like” button on a specially crafted page
Once the button was clicked, a message (for example “User Noob likes LOL This girl gets OWNED after a POLICE OFFICER reads her STATUS MESSAGE.”) was posted to the user’s news feed, which is visible to other users. Other users clicking on the news feed link in Facebook also landed on the click-jacking page – Sophos compares the way the link spreads to that of a worm and has, therefore, called the attack a click-jacking worm. A similar attack was launched on Twitter in early 2009.
Source: Sophos
