Dig Security together —— 阅读、挖掘、评论,安全共进步。


Join
Login
Submit Story

Categories

View All
Alert
- Applications security
- Bugtraq
- Exploit from milw0rm
- Exploit from packetstorm
- SANS Handler's Diary
- Virus
- WHID
Attack Vector
- ActiveX
- Botnet
- Data loss
- DDoS
- Emerging Threat
- Iframe
- Insider
- Phishing
- Privacy
- Web defacement
- XSS
Cyber-War
Material
- Ebook
- Podcast
- Security Cartoon
- Tools
Olympics
People
- Why
- zhaol
Sector-Specific
- Banking, Finance & Insurance
- E-commerce & Retail
- Educational Institutions
- Energy, Power & Utilities
- Enterprises
- Government
- Telecommunications
Security Giant
- Cisco
- Google
- IBM
- Microsoft
- NSFOCUS
- Symantec
Security Industry
- Cloud
- Conference
- Jobs
- News
- startup
- web2.0
Security Services
- Incident Response
- ISMS
- IT Audit
- Regulatory Compliance
- Risk Management
- Security Awareness
- Threat Management
- Vulnerability Management
Standard
- BS 25999
- BS 31100
- CMMi
- COBIT
- ISO 20000
- ISO 27001
- ISO 38500

Tag Cloud
web2.0


1
digs
Top 8 Web 2.0 Security Threats
submitted by wanghongyang 385 days ago (via readwriteweb.com)
The Secure Enterprise 2.0 Forum is a group of organizations and individuals composed of executives at Fortune 500 companies who have embraced the trend of Web 2.0 tools and services in enterprise.
 
1 Comments - More Info - Bury   Topic: web2.0
1
digs
海内的 CSRF 蠕虫攻击演示
submitted by wanghongyang 302 days ago (via gracecode.com)
那么我也刚好趁这个空档演示下 CSRF 的威力,详细的攻击步骤可以看视频演示 http://www.gracecode.com/demo/hainei_csrf.swf 海内近期内就会封堵住这个漏洞,所以就不提供相应的代码了,而且大家也不要尝试啦。
 
0 Comments - More Info - Bury   Topic: web2.0
1
digs
福布斯:Web3.0尚未到来 仍需5到7年
submitted by wanghongyang 519 days ago (via cnbeta.com)
互联网下一个进化阶段将是关于"垂直化"的进化。关于Web3.0的定义,我设想为Web 3.0 = 4C+P+VS (4C:内容、商业、社区和情景;P:个性化;VS:垂直搜索)。虽然,我们已经看到很多公司在垂直领域(包括垂直搜索、广告网络、社交网络等)里出现,但作为4C+P+VS用户体验融合的Web3.0仍然尚未到来,这是因
 
0 Comments - More Info - Bury   Topic: web2.0
1
digs
AJAX Web Applications Hacking Tools
submitted by wanghongyang 519 days ago (via outsurging.com)
Want to interface your favorite web app to your software program? With these tools you can literally eavesdrop on the AJAX requests and see the exact sequence of requests and responses live as you interact with the application, along with the request headers, response headers, cookies and the resulting content.
 
0 Comments - More Info - Bury   Topic: web2.0
1
digs
85% of malware is now distributed through the Web
submitted by wanghongyang 518 days ago (via net-security.org)
Webroot released primary research revealing the impact of Web 2.0 on the enterprise. An overwhelming 85 percent of malware is now distributed through the Web.
 
0 Comments - More Info - Bury   Topic: web2.0
1
digs
Javascript Security Tutorial
submitted by wanghongyang 515 days ago (via abeontech.com)
JavaScript is designed as an open scripting language. It is not intended to replace proper security measures, and should never be used in place of proper encryption. JavaScript has its own security model, but this isn't designed to protect the Web site owner or the data passed between the browser and the server. The security model is designed...
 
0 Comments - More Info - Bury   Topic: web2.0
1
digs
Surge in Facebook Malware
submitted by wanghongyang 511 days ago (via f-secure.com)
If you're a Facebook user, you may get a message like this, supposedly from a 'friend'. Since the message was sent by a 'friend', the likelihood that you would click on the link is much higher. On clicking the link, you would be redirected to a hi5.com site that looks something like the one below.
 
0 Comments - More Info - Bury   Topic: web2.0
1
digs
Google sending out CMS security alerts
submitted by wanghongyang 509 days ago (via webtribution.com)
Google has been very busy the past week or so updating their Webmaster Tools functionality, the most significant addition being their new crawl errors feature - which by itself is a godsend. This morning Google added yet another feature aimed at helping webmasters make their websites safer.
 
0 Comments - More Info - Bury   Topic: web2.0
1
digs
Is Twitter the newest data security threat?
submitted by wanghongyang 509 days ago (via devcentral.f5.com)
Are Twitter and other microblogging sites yet another avenue through which sensitive data can leak out of the corporate database and into the hands of ... anyone? Perhaps more worrisome, what information are you giving away simply by being a part of the community?
 
0 Comments - More Info - Bury   Topic: web2.0
1
digs
安全专家发现Facebook恶意件只攻击Windows
submitted by wanghongyang 507 days ago (via cnbeta.com)
安全专家警告用户和系统管理员称,Facebook站点新发现了一种恶意软件. 据国外媒体报道称,芬兰安全软件厂商F-Secure日前在一篇博客文章中表示,该公司发现大量Facebook网页通过承诺提供免费视频试图在用户的计算机中注入恶意代码.这一新型攻击以恶意蠕虫的方式传播,窃取Facebook用户的资料.用户会受到来
 
0 Comments - More Info - Bury   Topic: web2.0






©2008 2sec.org - All content for this site is under a Creative Commons license
About us  |  Contact us  |  FAQ  |  Feedback  |  Links  |  京ICP备07018489号