Web-Based Worms: How XSS Is Paving the Way for Future Malware

Posted by theliepolitic on Dec 24th, 2009 and filed under Technology. You can follow any responses to this entry through the RSS 2.0. You can skip to the end and leave a response. Pinging is currently not allowed. | Viewed 565 times.

Page copy protected against web site content infringement by Copyscape


I first became aware of cross-site scripting (XSS) nearly a decade ago. At the time, despite being an all too prevalent bug in Web applications, the risk posed by the flaw was of limited value. It was the go-to vulnerability for any pen tester that was having trouble digging up a meaningful vulnerability to add to his audit report. That has all changed now. Today, XSS represents a meaningful threat — a threat that is not only leveraged by attackers to harvest authentication credentials, but also is enabling a new generation of malware in the form of Web-based worms.
Visit Source

Leave a Reply

Comments links could be nofollow free.

You might also want to check out:
Drudge Report accused of serving malware
Malware hits all-time high in January
Malware delivered by Yahoo, Fox, Google ads
June malware report – something’s phishy
Jackson death prompts malware alert at Google
Virus targets programs built with Delphi
Daily Monavie.com

Quick Survey

Free Online Poll

Recent Posts

We Write About

Categories

 

December 2009
M T W T F S S
« Oct   Jan »
 123456
78910111213
14151617181920
21222324252627
28293031  

Most Active Discussions

Stats


Free Page Rank Tool

Since 11/2008

Add to Technorati FavoritesA Do Follow Blog Directory. Submit Free!Political Blogs - BlogCatalog Blog Directory Politics blogs Grokodile Blog Directory Top Blogs Politics TopOfBlogs
free counters

Photo Gallery

Page copy protected against web site content infringement by Copyscape
NETWORK: My Reality Television and The Lie Politic 2008-2009 © ALL RIGHTS RESERVED
www.e-referrer.com