Security News

In an effort to mitigate a large class of potential cross-site scripting issues in Firefox, Mozilla has blocked execution of all inline scripts and potentially dangerous eval-like functions for...

More than a decade after hitting the headlines, clickjacking fraud remains an under-reported hazard on hundreds of popular websites.

RiskIQ, the global leader in attack surface management, announced the launch of RiskIQ JavaScript Threats Module to ensure customer trust in e-commerce by protecting organizations’ high-traffic...

And using browser privacy extensions may just make matters worse Boffins from Graz University of Technology in Austria have devised an automated system for browser profiling using two new side...

Jscrambler, a technology company specializing in JavaScript Application Security and Web Page Monitoring solutions announces Self-Healing JavaScript – a world first for JavaScript application...

A security researcher has demonstrated a new way to track mouse movements even if users block JavaScript.

Latest Attack Targets Online Campus Stores in US and CanadaJavaScript sniffers, which are used to skim credit card and other customer data from e-commerce websites, are a persistent threat. In the...

Group-IB Researchers Analyze the Latest Global TrendsJavaScript sniffers - specialized malware that skims credit card information and other data from online shopping - are becoming far more...

A change made several months ago in an open-source JavaScript library introduced a cross-site scripting (XSS) vulnerability in Google Search and likely other Google products. read more

Tired: Booth babes. Wired: Floof babes. Expired: Conference hall carpets Roundup This week we had an NSA reverse-engineering toolkit released at the RSA Conference, a buffer bashed aboard British...