Friday, August 03, 2007

AUGUST, 2007 | LAS VEGAS - Black Hat USA

New Tool Automates Webmail Account Hijacks
Logging into your MySpace, Facebook, Yahoo!, Gmail or Hotmail account over a wireless connection just got a lot more dicey, as researchers here at the Black Hat hacker conference today demonstrated a new set of tools that help automate the hijacking of those accounts.

Read the article HERE.


Security researchers exercise AJAX attacks
The presence of AJAX code in Web applications continues to grow at a rapid pace, but many of the programs built using the language remain extremely vulnerable to various forms of attack, according to researchers with applications testing specialists SPI Dynamics.

Presenting at the Black Hat 2007 security conference in Las Vegas, Billy Hoffman, lead researcher in SPI's Labs group, and Bryan Sullivan, one of the Atlanta-based company's senior research engineers, detailed a number of methods through which they said many common AJAX applications can be targeted by malicious hackers.

Read the article HERE.


Blue Pill Gets a Refill
The researcher who created the Blue Pill has released code for it for the first time: Joanna Rutkowska made source code for the latest version of the virtualization-based malware available yesterday during her Black Hat presentation here.


Read the article HERE.

Mozilla to give away own security testing tools
Mozilla Corp. will release some of its homegrown security tools to the open-source community, the company's head of security said today, starting with a "fuzzer" it uses to pin down JavaScript bugs in Firefox. The JavaScript fuzzer will be handed over Thursday morning, following a presentation at Black Hat.

Read the article HERE.

0 Comments:

Post a Comment

<< Home