Giorgio Maone - Slashdot User

Submission + - GoogHOle: exploiting GMail, Picasa and 200K sites (hackademix.net)

Submitted by

Giorgio Maone

on Monday September 24, 2007 @09:15AM

Giorgio Maone writes: "Multiple Google-targeted exploits disclosed in the past 3 days could compromise your GMail account, steal your pictures from Picasa or impersonate you on almost 200,000 big sites which outsourced their search engines (vulnerabilities included in the price). If even Google, a very reactive company when web security matters, does face this kind of problems, how serious is the threat and what can you do, as a "normal" web user, to protect yourself?"

Submission + - United Nations VS SQL Injections (hackademix.net)

Submitted by

Giorgio Maone

on Sunday August 12, 2007 @11:02AM

Giorgio Maone writes: "The United Nations web site has been defaced by 3 crackers who replaced the speeches of the Secretary-General Ban Ki-Moon with their own pacifist message. This article briefly analyzes the exploited vulnerability and the technology used on the server, both quite surprising to find in such a high profile site."

Submission + - 30th Anniversary of Apple II going on sale (wikipedia.org)

Submitted by WhatAboutTheAltair on Tuesday June 05, 2007 @05:18AM

WhatAboutTheAltair writes: June 5th 1977 (exactly 30 years ago today) was an important date in the history of computing: the Apple II, the world's first practical personal computer went on sale. $1,298 (equivalent to about $4,000 in 2007 terms) got you a MOS Technology 6502 microprocessor blitzing away at 1MHz, 4KB of RAM, Interger BASIC on ROM, an audio cassette interface for storing programs & data, and a 24x40 caps-only video output which you could connect to your TV with an RF modulator. For $2,638 you could get your hands on the top-end machine equipped with a massive 48KB of RAM — and you thought the price of RAM upgrades at the Apple Store was expensive today!

Submission + - Black & White Ball Con Confirm Speakers (theblackandwhiteball.co.uk)

Submitted by Anonymous Coward on Tuesday June 05, 2007 @05:12AM

An anonymous reader writes: September 18th-21st's London security conference — The Black And White Ball today confirmed it's speaker list. As well as previously confirmed big names such as Oxblood Ruffin of the Cult Of The Dead Cow and "Goolag" and Richard Thieme other highlights include; Paul Zielger to release PoC multi-platform worm, Richard Demsyn will release a new sniffing framework, Justin Ferguson planss to present a previously unpublished method for bypassing security checks while discussing a previously unpublished method for exploiting the GNU libc malloc implementation with a previously unpublished bug. See the full list here.

Submission + - Agloco: Where Have All the Guinea Pigs Gone? (associatedcontent.com)

Submitted by

reviewer

on Tuesday June 05, 2007 @05:04AM

reviewer writes: "Now that startup company AGLOCO has released their pay-only-if-we-make-money viewbar, with faulty technology and after many, many delays, guess what? Their server can't handle the downloads. There can't be that many members left...AGLOCO, who? Now, who wants to test this dependable and reliable (cough) company's software, expose your computer to security risks and not get paid?"

Submission + - Ron Paul on Daily Show thanks to rabid supporters (whitehouser.com)

Submitted by

policy

on Tuesday June 05, 2007 @04:56AM

policy writes: "Ron Paul fans have been making so much noise online that he has become one of the most popular names on the Internet. He has even bested the likes of Paris Hilton, Britney Spears and Lindsay Lohan on Technorati! Recently, supporters rallied around Ron Paul and urged Jon Stewart to interview the candidate well they got their wish, Ron Paul on Daily Show. This upcoming 2008 election is going to be wild, and the Internet may very well revolutionize United States politics and political discourse in America!"

Submission + - First commerical WiMAX network live in the UK (wimanx.com)

Submitted by

Kristan McDonald

on Tuesday June 05, 2007 @04:45AM

Kristan McDonald writes: "Wi-Manx has scored a first for the Isle of Man and the UK by becoming the first commercial licensed wireless broadband network provider to operate using WiMAX (Worldwide Interoperability for Microwave Access) compliant equipment. WiMAX is a standards-based wireless technology providing high-speed internet connections over long distances.

For full details, please see our press release here:

http://www.wimanx.com/News/Default.asp?Action=View &ArticleID=19

or here for the PDF version:

http://www.wimanx.com/downloads/WiManx%2020x5.pdf"

Submission + - Microsoft IEAK site defaced with persistent XSS

Submitted by

Giorgio Maone

on Sunday April 29, 2007 @05:19AM

Giorgio Maone writes: "A guy named Cyb3rT defaced a microsoft.com page, the Internet Explorer Administration Kit License and Registration form, replacing it with a picture of Bill Gate's "pie incident". Just in case they "already" removed it (it's there since 24 hours ago at least), you can look at this screenshot.

This defacement has been performed as a persistent cross site scripting (XSS) injection inside the Country/Region selector, which executes attacker's JavaScript code in the security context of the microsoft.com web site. In this specific case the payload was innocuous and rather funny, but the same technique can be very effective for malicious aims, like phishing or identity thief.

Pretty obviously, if you use NoScript or otherwise have JavaScript disabled, in order to watch the show you need to allow ieak.microsoft.com (temporarily, of course!)"

Slashdot Top Deals