Linux Today: Linux News On Internet Time.

Attacking Web 2.0 at LinuxWorld

Aug 08, 2007, 21:00 (0 Talkback[s])
(Other stories by Robert Vamosi)

"At LinuxWorld today, SPI Dynamic's senior security engineer, Matt Fisher, talked about the vulnerabilities of Web 2.0. His talk, although not much different from that of his colleagues Billy Hoffman and Brian Sullivan last week at Black Hat, offered some new examples of what criminals are doing online, armed with little more than a desktop browser. Cross-site scripting attacks are the No. 1 threat, according to the Mitre organization, in part because they are so easy to do.

"In particular, Fisher singled out social-networking sites..."

Complete Story

Related Stories: