Apple’s OSX iterations have been known to be some of the more securely designed operating systems on the planet. There is no real threat from viruses under OSX because of it’s strict use of access rights, built into it’s BSD base which regulates the access rights of every user on the system. However, basic security in their user interface could be compromised by a very simple, very useful feature known as “Spaces“, a feature lifted and rebranded from X Windows and Amiga (reference: Wikipedia), through a effective Denial of Service.
Continue reading ‘THEORY: Apple OSX Spaces Vulnerable’
If we are going to release security flaws which might lead us into an industry shakedown, we may as well go for the trifecta.
Continue reading ‘DISCLOSURE: XSS Fun’
<<< DISCLAIMER >>> Please note that I have not written this article to enable people to steal music from MySpace artists - This is a ‘proof of concept‘ article. Please, do not steal music! If you are going to steal it then please do so knowing you are committing a crime and myself and theReformed have nothing to do with it.
Continue reading ‘Snatching Protected MySpace Music Using Safari’
Well, maybe not so much. However, Google has been pretty light on the keys in fixing a cross-scripting bug that leads to some pretty serious consequences for us, the end-user. The flaw in the handling of the code can compromise our very online privacy that is being taken from us at a snails pace as time goes on. The term is 'Phishing' and it is spreading online like an epidemic of Biblical proportions.
Continue reading ‘Google + XSS = Destruction of Mankind?!’
Every day I spent my time researching new ways to do things I have done for years, for example this weekend I spent 27 hours researching a new way to present Java EE HTTP uploads using AJAX, Servlets and EJB's. Yeah I know - blah blah, "we all do that kind of thing, who cares". But AH! I have been doing the same thing for something we are all familiar with. MySpace! Yes its rubbish, yes its been hacked together from ColdFusion and ASP .NET elements and YES it always seems to be broken, BUT there seems to be a massive market out there for people who want to make a quick buck from generating MySpace friend adders, or mass commenter's. They charge a fortune to download these applications to spam other MySpace users, why can't I make a free one? screw those guys… lets open source it! So I thought - How hard can it be? so I started to investigate and I was quite excited as to what I found. Continue reading ‘Hacking MySpace - The Basics - P1′
There are grave inconsistencies in the implementation of secure communications that have left the consumer at great odds with a new generation of talented, albeit immature, data thiefs. Catching a segment of traffic out of the air or through a piggy-back of a stream of packets brings concern to this scene veteran's mind.
Continue reading ‘Internet Communication Needs RATTS’
This post is something I have been meaning to write about for ages. We all use wireless network connections all the time, At work, home - on the move. For most of us pro's wireless networking has become the norm, so much so that if you get to an airport or train-station that doesn't offer some kind of wireless access you feel like you're sitting in a backwards ultra low tech bumpkinesque farm. Continue reading ‘Cracking WEP. Watch me hack you.’
