Tuesday, December 30, 2008
Pak hacker attacks E Rlys site, threatens cyber war on India.
SBI shuts website after hackers break in!
The State Bank of India, the country’s largest bank, has had to shut down its corporate website after overseas hackers tried to break in.
While the bank said that transactions took place through www.onlinesbi.com, a senior SBI source said that the transactions were slow as the entire system was under watch.
The country’s largest bank decided to shut down its corporate website www.sbi.co.in on Wednesday evening when hackers blocked some of the pages. The bank also noticed unusually high traffic on its website on Wednesday.
Read More:http://www.business-standard.com/india/storypage.php?autono=344523
Monday, December 29, 2008
Frame Injection in Google!!
A frame injection attack is an attack on Internet Explorer 5, Internet Explorer 6 and Internet Explorer 7 to load arbitrary code in the browser. This attack is caused by Internet Explorer not checking the destination of the resulting frame, therefore allowing arbitrary code such as JavaScript or VBScript. This also happens when code gets injected through frames due to scripts not validating their input. This other type of frame injection affects all browsers and scripts that do not validate untrusted input.
Saturday, December 27, 2008
The Five Coolest Hacks Of 2008!!!
Computer Security's Six Most Important Words Of 2008
Well, if you must know, 2008 was a year of tectonic shifts in IT security. The technologies changed, the economy changed, and the role of security changed. Even the people who make the laws about security changed. You could hardly swing a dead server without hitting some major security-shifting event, and most of those events will continue to have repercussions throughout the new year.
If you need somebody to spell it out for you, Darkreading can do it!!!. Let's look more closely at the six words and what they meant for security in the past year on below given link.
Tuesday, December 23, 2008
2008's biggest tech crime stories!
Thursday, December 18, 2008
OWASP Testing Guide V 3.0 is avilable now!
The Open Web Application Security Project (OWASP) is a worldwide free and open community focused on improving the security of application software. OWASP team mission is to make application security "visible," so that people and organizations can make informed decisions about application security risks. Everyone is free to participate in OWASP and all of OWASP materials are available under a free and open software license.
To download the latest version (V 3.0) of OWASP testing guide click on the below link:-
http://www.owasp.org/images/5/56/OWASP_Testing_Guide_v3.pdf
Fix for unpatched internet explorer flow
Fix for my previous blog related to internet explorer has been released
The patch details & download information can be found at :
American Express web bug exposes card holders!
Wednesday, December 17, 2008
Unpatched Internet Explorer Flaw Allows Attacks!!!
The exploit doesn't require users to click on links or download software from the Internet. Rather, it infects users when they open a Web page. The goal is to steal passwords, according to security experts, gain access to financial data and otherwise steal the victim's identity.