Network World

New cross-site scripting attack targets VoIP

A dangerous new cross-site scripting attack is being called the first Web 2.0 exploit used against VoIP. Security researchers have found a way to execute cross-site scripting attacks through VoIP ...
CRN

Twitter Site Update Opened Hole For 'onMouseOver' XSS Attack

The teen, identified as Pearce Delphin, 17, detected the cross-site scripting (XSS) flaw which allowed JavaScript code to appear as plain text in tweets that could then be launched on the browsers of ...
Computerworld

How to defeat the new No. 1 security threat: cross-site scripting

Cross-site scripting, often abbreviated XSS, is a class of Web security issues. A recent research report stated that XSS is now the top security risk. In a typical XSS scenario, a Web page might use ...
Bleeping Computer

Hackers steal data of 2 million in SQL injection, XSS attacks

A threat group named 'ResumeLooters' has stolen the personal data of over two million job seekers after compromising 65 legitimate job listing and retail sites using SQL injection and cross-site ...

Application Security Code and Protecting the Digital Heart of Today’s Business

Modern businesses depend on software to deliver services, manage internal organizations, and protect customer information. As organizations expand their digital presence, the risk increases. That is ...