eWeek Security Watch
Advertisement
Advertisement
January 3, 2007 12:15 PM

Flash Phishing, MySpace Passwords and Hacking PDFs



LINKS DU JOUR: Google's blacklisted URL database is chock-full of MySpace log-in credentials; Who knew Symantec had a full-fledged rock band?

* Google's blacklisted URL database is a goldmine for MySpace user names and passwords.

* RockDotRock is a band formed by anti-virus software vendor Symantec "as an alternative to broadcast advertising." The band -- five musicians from New York City -- sings and plays original songs about the dangers of Internet fraud. Who knew?

Imperva has discovered a critical vulnerability in DWR (Direct Web Reporting), a key underlying technology in the AJAX Web application development framework.

* Identity thieves are using Flash technology to hide phishing attacks from page-analysis anti-phishing tool bars.

* In 2005, Mozilla raked in $53 million in revenues, mostly from Firefox "search engine relationships."

* Interesting back-and-forth discussion between Month of Apple Bugs hacker Kevin Finisterre and the University of Wisconsin's Dave Schroeder on the value of releasing Mac exploits without prior warning to Apple.

* Be warned that PDF files posted online can be manipulated to execute JavaScript.

TrackBack

TrackBack

http://securitywatch.eweek.com/cgi-bin/mte/mt-tb.cgi/9990

Comments (2)

Paul :

Boy, how embarrassing. Especially for Mr. Richard Moyle (see the password list). I guess he's been responding to all those spam messages, huh?

Robert Smith :

I sure don't see any MySpace login credentials in the Google blacklist. I see links to login pages, but no passwords.

Post a Comment

 
 
RSS Syndication
Advertisement
Advertisement
Security Watch     Contact Us | Advertise | Site Map
eWEEK Quick LInks

Ziff Davis Enterprise