Google Adds Content Security Policy Support to Gmail Google has added another layer of security for users of Gmail on the desktop, which now supports content security policy, a standard that's designed to help mitigate cross-site scripting and other common Web-based attacks.
Sony: Employee Health Information May Have Been Compromised Sony Pictures Entertainment has sent a letter to employees warning them that, along with huge amounts of corporate and employee information, some personal health data belonging to SPE employees may also have been compromised in the attack that hit the company in late November.
Researchers Go Inside Illegal Underground Hacking Markets Researchers at Dell SecureWorks have looked at services and pricing available inside illegal online marketplaces selling crimeware, stolen identities, credit cards, and hacking services.
Honeywell PoS Software Vulnerable to Stack Buffer Overflows There are stack buffer overflows in two components of a Honeywell point-of-sale software package that can allow attackers to run arbitrary code on vulnerable systems. The vulnerabilities lie in the HWOPOSScale.ocx and HWOPOSSCANNER.ocx components of Honeywell’s OLE for Retail Point-of-Sale package, which is designed to help integrate PoS hardware with Windows PoS systems. Versions of the Honeywell […]