vulnerability

On the DeveloperDrive.com site there's a recent post anyone wondering about cross-site scripting should give a read.

They introduce you to the basic concept and two things you can do to help prevent them.

Geek.com: "This vulnerability isn't a backdoor or some inherent flaw in Android, it is instead HTC failing to lock down its data sharing policies used in the Tell HTC software users have to allow or disallow on their phone."

Hacking Truths: "Bad news for just about every WordPress blogger out there."

The vulnerability of 225 million iTunes credit card accounts has been grossly exaggerated

Whether it’s Buses or Beer Trucks, every project has a vulnerability if a key member is no longer there tomorrow.

What is your project’s Bus Factor and how can you reduce it? Click on in, let’s talk.

In response to new developments in the old vulnerability of insecure DLL loading Microsoft has released an advisory describing the problem, actions that may be taken by users, administrators and developers, actions they plan to take and a tool that administrators can use to mitigate vulnerable applications.

In case you haven’t noticed it through the other channels already…

The Month of PHP Security 2010 has finally begun.

During the Month of May 2010 we (SektionEins) will post every day at least one new vulnerabilities in PHP and one new vulnerability in a PHP applications.

In addition to that every other day we will post an article about a PHP security topic or a new PHP security tool.

Among these articles and tools are those that were submitted to us during the Month of PHP Security CFP.

Microsoft issued a security advisory on Thursday for a vulnerability in two SharePoint products.

Microsoft is preparing a security update in June for the IE XSS filter in Internet Explorer 8.

NY Times: "The House today overwhelmingly passed a bill aimed at building up the United States' cybersecurity army and expertise, amid growing alarm over the country's vulnerability online."