Security link roundup 7/28/08

Related Articles

• My favorite iPhone clients for IM, Facebook, Twitter and Delicious
• New and noteworthy for 2/4/09
• GrandCentral Mobile Access

Subscription Options

Subscribe Magazine

Subscribe Newswire

Widgets & RSS Feeds

Email Hacking Going Commercial: Dancho Danchev writes on his blog about a commercial service that uses a software package with a collection of security vulnerabilities (many are Cross Site Scripting/XSS attacks) combined with a network of contractors, a validation service, and several payment options all wrapped up in a single commercial service. This is yet another example of why XSS attacks and CAPTCHA failures are such a big problem.

How to break CAPTCHAs: Blackhat SEO covers a compendium of articles, talks, and writeups on CAPTCHA vulnerabilities and attacks. It is clear that much of the web’s CAPTCHA infrastructure is rapidly fraying. It’s increasingly difficult to build CAPTCHAs that are secure enough from automated attacks, but that do not result in large number of failures for normal people.

Cell Phone Spying: Is Your Life Being Monitored?: Geeks are Sexy has a post on commercial remote call monitoring and tracking options (many of which are legal only under specific circumstances) for mobile phones. The article covers both World Tracker and Flexispy.