White hat hackers reveal holes in NSA website

http://en.wikipedia.org/wiki/National_Security_Agency

Although now reported and fixed, a report found that there were cross-site scripting (XSS) vulnerabilities on the main NSA forward facing web server. The report claimed that two vulnerabilities were found in “shoddily outsourced third party software written in ColdFusion”, which Rustle Research researcher Horace Grant said could be used to impersonate NSA personnel and web traffic.

He said: “Why are unreliable third parties creating the software that guards our national secrets?”

Tags:

NSA

Security

Story added 2. July 2013, content source with full text you can find at link above.

Comments are closed.

More antivirus and malware news?

Tech support scammers preying on young Americans, study finds
Happy Birthday, CVE!
Does Apple’s double-tap gesture solve the mobile/human interface problem?
The History and Evolution of Zero Trust
Lenovo ThinkPad CVE-2019-6172 Remote Code Execution Vulnerability
How to avoid fake Download buttons
Hijacked NASA Kepler Twitter feed tweets entirely new type of moon shot
Microsoft announces Blueprint challenge winners, hands out cash
In Other News: Funding Increase, Abuse of Smartphone Location Data, Legal Matters
Canvas maintenance to take place February 5 from 5:00 a.m. to 7:00 a.m. ET

White hat hackers reveal holes in NSA website

More antivirus and malware news?

Ads

Security news

Malware

Security

IT security

About site

Search Terms Tips

Recent New Tips

Recent Posts