SecTheory in the News
08/22/2008 That password-protected site of yours - it ain't [The Register]
08/09/2008 Google Haveth a Hole, Google Doth Protest a Fix [Mashable.com]
08/09/2008 Surfing Google may be harmful to your security [The Register]
08/07/2008 Researchers Warn of Social Networking Scams [Washington Post]
08/07/2008 Beware of the Gadgets [Government Computer News]
08/07/2008 Hackers target Google Gadgets [USA Today]
08/06/2008 Google Gets Racked Over The Coals At Black Hat [Information Week]
08/05/2008 Black Hat 2008 promises to be big [Yahoo! News]
08/01/2008 Security Bites 110: Breaking Google Gadgets [C|Net]
07/31/2008 How Twitter got pwned in 2 hours [Security4all]
07/28/2008 Security experts will reveal Google Gadgets vulnerability [ArcaVir]
07/25/2008 Get Ready For Google Gadget Malware [Information Week]
07/21/2008 Cenzic to Present on "Xploiting Google Gadgets: Gmalware and Beyond" at Black Hat 2008 [Reuters]
07/21/2008 Google Gadgets are risky business [Network World]
07/22/2008 Intrepidus Group Introduces PhishMe to Help Organizations Deal With Growing Pandemic of Spear Phishing [LA Times via PR Newswire]
07/22/2008 'PhishMe' Tool Lets Businesses Spear-Phish Themselves [Dark Reading]
07/17/2008 Vulnerabilities Could Expose Broad Range of Java Apps [Dark Reading]
06/2008 Anatomy of an XSS Attack: Exploit, Impact and Response [ISSA Journal]
05/23/2008 TJX Staffer Sacked After Talking About Security Problems [PCWorld]
05/23/2008 Delving Into Google Health's Privacy Concerns [Slashdot]
05/22/2008 RSnake picks on Google Health... yes, Google wants your medical records, too! [ZDNet]
03/25/2008 Mozilla Foundation Security Advisory 2008-16 [Mozilla]
03/17/2008 Browser Session Virtualization [Securosis]
03/11/2008 Can Source Boston save us from boring security conferences? [TechTarget]
02/26/2008 Researchers show how the Simple Network Management Protocol can be abused for cross-site scripting attacks [Dark Reading]
02/22/2008 Goolag makes Google Hacking a snap [The Industry Standard]
02/11/2008 Why many popular websites are risky [American Public Media]
01/09/2008 Spam your printer from the Web? Researcher shows how [InfoWorld]
01/07/2008 Hacker Launches XSS Worm Replication Contest [eWeek]
01/05/2008 Contest seeks the most diminutive XSS worm [Channel Register]
11/22/2007 Many businesses still holding off on upgrading to Vista [ITworld Canada]
10/05/2007 Hackers at Microsoft?! Now Wait a Minute . . . [PCWorld]
09/27/2007 Adobe gifts internal file permissions to unwashed masses [The Register]
09/25/2007 Podcast #47 - Web application security with RSnake and Jeremiah [StillSecure]
09/24/2007 Unholy trinity of flaws put Google users at risk [The Register]
09/08/2007 A US CERT reminder: The net is an insecure place [The Register]
08/21/2007 Cenzic Patent Case Worries Web Researchers, Vendors [Dark Reading]
08/21/2007 Researcher crosses swords with Google over XSS 'flaw' [The Register]
08/18/2007 Google Gadgets can be misused by phishers [Infoworld]
08/16/2007 Student reprimands Facebook for bad manners and exposed code [The Register]
08/13/2007 WhiteHat Security Adds Six Partners to Growing Alliance Program [PR Newire]
08/07/2007 Black Hat: JavaScript Flaws Ease Intranet Attacks [InformationWeek]
08/06/2007 Mozilla vows to patch any critical flaws in 10 days [InfoWorld]
08/06/2007 BLACK HAT: Mozilla says it can patch flaws in 10 days [ITWorld]
08/06/2007 Retro attack gets new life, worries browser makers [SecurityFocus]
08/06/2007 Black Hat: Mozilla says it can patch flaws in 10 days [ComputerWorld]
08/06/2007 Mike Shaver, ten days, and expletives [Mozilla.com]
08/03/2007 Security Bites Podcast: An interview with RSnake [C|Net]
08/03/2007 Black Hat USA 2007 Round-Up Part 1 [TaoSecurity]
08/03/2007 Blackhat 07: Secure Your Web Apps [NetworkWorld]
08/02/2007 Web 2.0 applications raise security issues [ComputerWorld]
08/01/2007 Black Hat: Security researchers show how corporate intranets are ripe for emerging attacks [InfoWorld]
07/30/2007 Security Researcher Acknowledgements for Microsoft Online Services [Microsoft]
07/19/2007 Firefox raises barrier to cross-site scripting attacks [ZDNet]
07/12/2007 Demonstrating the Top 10 Web Application Hack Attacks Webinar [Infosecurity Magazine]
07/09/2007 Is your network ready for Web 2.0 traffic? [NetworkWorld]
07/05/2007 An Auction Site for Vulnerabilities [Dark Reading]
06/19/2007 Click Fraud Index [ClickFraudNetwork]
06/19/2007 Industry Click Fraud Rate Jumps Past 15 Percent in Second Quarter 2007-Botnet Traffic, Parked Domains and Made-for-Ad Sites Cited as Growing Click Fraud Sources Click Fraud Rate for Content Networks Hits 25.6 Percent [Austin Ventures]
06/10/2007 Google Turns to Security [PCWorld]
06/10/2007 Analysis: A business case for security at Google [InfoWorld]
06/05/2007 Google Desktop Vulnerable to Hackers [CSO Magazine]
06/05/2007 Google Desktop vulnerable to new attack [ComputerWorld Asia]
06/01/2007 Beware of that man between you and your Google Desktop [ZDNet]
05/22/2007 Wrestling With Malware, Google Launches Security Blog [TechWeb]
05/26/2007 As Web 2.0 evolves, security becomes an issue [Washington Post]
05/14/2007 Do you know what's leaking out of your browser? [ZDNet]
05/10/2007 The Phisher King [Forbes]
05/10/2007 Microsoft BlueHat Security Briefings: Spring 2007 Sessions and Interviews [Microsoft]
05/10/2007 Microsoft invites hackers back for Blue Hat [ComputerWorld]
05/01/2007 Google Desktop vulnerable to new attack [InfoWorld]
04/17/2007 Corporate data slips out via Google calendar [PCWorld]
03/16/2007 Hackers promise month of MySpace bugs [Washington Post]
03/07/2007 RSnake, Unmasked [Dark Reading]
03/06/2007 A New Battleground for Computer Security [Wall Street Journal and mirrored at MarketWatch]
03/06/2007 Click Forensics Expands Management Team and Board of Advisors [Investors.com]
02/26/2007 Second Google Desktop Attack Possible, Researchers Say [CIO Magazine]