Wednesday, June 21, 2006

A couple of intesting web application hacks

PayPal Security Flaw allows Identity Theft

JavaScript worm targets Yahoo!

We've known about the possible risks for years and it looks like Cross-Site Scripting (XSS) is now being used by the bad guys.

No comments: