Adam Stone writes on technology trends from Annapolis, Md., with a focus on government IT, military and first-responder technologies. The Department of Homeland Security has warned federal agencies ...

Google has released two new tools for developers looking to protect web domains against XSS scripting security flaws. Cross-site scripting (XSS) is a common security issue web developers face today.

In today’s digital landscape, web applications are integral to our daily lives, enabling seamless interactions and transactions. However, this increased connectivity also opens the door to potential ...

[ UPDATE: Microsoft plans to ship an XSS filter update in June 2010to fix what is hopefully the last attack scenario ] The cross-site scripting filter that ships with Microsoft's Internet Explorer 8 ...

The US Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) are urging organizations to focus on eliminating cross-site scripting vulnerabilities in ...

O2, which as well as being a mobile phone company, is carving out a name for itself as a broadband supplier, following its acquisition of Be Internet two years ago. O2 has confirmed it is looking at ...

Salesforce.com has patched a cross site scripting flaw in a sub-domain which could have been exploited by hackers to hijack accounts or distribute malware. The vulnerability in “admin.salesforce.com” ...

A zero-day vulnerability in yahoo.com that lets attackers hijack Yahoo! email accounts and redirect users to malicious Web sites offers a fascinating glimpse into the underground market for ...

LinkedIn was susceptible to four reflected cross site scripting (XSS) vulnerabilities before issuing a fix for those flaws over the summer. The professional social networking service LinkedIn was ...

Successful exploitation allows attackers to steal potentially sensitive information, change appearance of the web page, and perform phishing, spoofing and drive-by-download attacks. Users of the ...