|
News for
020300
contributed by Shill
Cross-site scripting has become such a major concern it is has finally
prompted CERT to release a security advisory. The problem is that no
one verifies input data on a web form or when dynamically generating
pages. This allows someone to potentially insert damaging code that
will be automatically run. No one has been victimized yet but the
potential risk is huge, effecting every browser and web page. To
protect yourself from this risk CERT recommends that you turn off
cookies, all java and "Not Engage in Promiscuous Browsing".
CERT
Associated
Press - via San Jose Mercury News
|
contributed by Curador
After having his Xoom.com web site shut down after posting 1000 credit
card numbers Curador has moved on to Geocities. This time he is posting
several thousand numbers from four different e-commerce sites and he is
including names and addresses. The new GeoCities site has been online
and active for almost 24 hours, while their abuse department has been
contacted it is unknown how long the site will remain active. Curador
has claimed to have posted the numbers from
http://www.shoppingthailland.com, http://www.ltamedia.com and two sites
hosted at http://www.promobility.net.
APB
News
|
contributed by Macki
The protests against the MPAA lawsuit over the DeCSS DVD utility are
continuing on schedule. This Friday protesters around the world will be
gathering at local theaters to hand out flyers denouncing the MPAA
action.
Press Release
2600.com
Open DVD
CNNfn
|
contributed by Evil Wench
The Internet Engineering Task Force has issued a resounding no to
Internet wiretaps. They said that they would not "consider requirements
for wiretapping" in
protocols.
IETF
Draft Proposal
Wired
|
contributed by Evil Wench
Despite promises to the contrary Medical and Health related web sites
are giving out the personal information of their visitors to marketers
without notifying them, sometimes in direct violation of their own
privacy policy. The privacy breaches were discovered after a survey of
21 of the web sites was conducted by the California HealthCare
Foundation.
ZD
Net
NY
Times
C|Net
|
|
![](right-bar.jpg)
|