Lacework: Broken link profile in the website leads to identity theft.

Hi, I have found the Broken link profile in the website where the attacker can perform identity theft. Summary : When a web application has any pages, sources, links to external 3rd party services and are broken then the attacker can claim those endpoints to successfully conduct the attack and...

Client-Side Protection is Key to Web Application Security

The Open Web Application Security Project OWASP Foundation defines script attacks as a "type of injection in which malicious scripts are injected into otherwise benign and trusted websites."1 From the perspective of the user, malicious code is coming from trusted websites. Recently popularized by...

“Customer Support formula Scam” fresh out of the oven, Microsoft recommends that users timely update-vulnerability warning-the black bar safety net

On the Internet, a variety of fishing and malware advertising scams is increasing, which is a well-known type of Scam is the“Customer Support formula Scam（Tech Support Scam”, and the main way to convince the user to believe their computer problems, and requests you to jump the page to“fix”the...

Swiss Star: extortion virus is a new variant after the poisoning 1 0 5 4 full file encryption-vulnerability warning-the black bar safety net

Recently, the rising“cloud security”system intercepted a new type of blackmail Virus, the virus encrypts files up to 1 0 5 4, file Unified encryption for. encrypted format, thus a ransom of 1 bitcoinabout RMB 4 5 0 0 Yuan. If the user is not within the prescribed time hack payment, the encrypted...