Blog
Blogs
The Websense Security Labs Blog delivers the most current information about breaking security research topics and today's advanced Internet threats. Websense Security Labs investigates and publishes information about outbreaks, new threats and other relevant Web security topics to protect organizations from converging risks to their data from Web, email and user based attacks.
SEARCH BLOG
04.30.2009 - 2:30 PM
So it's the final day at InfoSec Europe 2009, and it's my first day back in the office after spending the last couple of days at InfoSec Europe. As always
the show was a great opportunity to get involved in interesting discussions around the security issues that are being faced on a daily basis.
Read more »
Designing a JavaScript Interpreter to Emulate Browser Function Scoping
04.29.2009 - 8:00 AM
This blog deals with how one might develop a JavaScript interpreter to emulate a browser environment. In particular, it focuses on JavaScript's treatment of scoping of variables and functions, and how that might affect the interpreter's design. It also shows how a Web site can be designed to exploit the behavior of a browser's JavaScript interpreter to make emulation difficult.
Read more »
04.28.2009 - 8:00 AM
We arrived home from RSA 2009 this past week, where we had an excellent time.
We had the pleasure of hanging out with friends from the Facebook Security Team, as well as other researchers in various fields of security. We discussed a variety of threats we’d been seeing and compared the ways in which we were each combating them.
Read more »
This Month in the Threat Webscape
04.10.2009 - 3:57 PM
Month of March 2009
This month's Web security highlights, or should we say Web (in)security highlights, include having all major browsers (Internet Explorer, Firefox, and Safari) fall to Web exploits, in a hacking contest called Pwn2Own at CanSecWest. If this isn't enough to illustrate the danger of accidentally visiting drive-by exploit malicious Web sites, we don't know what does.
Google Docs suffered from a security flaw (enterprises looking to adopt Web 2.0 office tools should proceed with caution); more embassy Web sites were being compromised and used to infect visitors to their site; Facebook experienced a private photo "oops"; and many more problems occurred.
Read more »
Targeted Attacks Use “Recession Relief” Theme
04.09.2009 - 9:00 AM
Internet fraudsters are increasingly taking advantage of the deepening recession to dupe unsuspecting email recipients. The email often includes a request for personal details on the pretense of receiving some financial reward, which later leads to fraud.
Read more »
Video Sharing and the Blogosphere – Can the community police itself?
04.06.2009 - 2:00 PM
User-generated content is both a source of rich information and a threat to your organization. This content needs to be effectively policed at a granular level, rather than blocked with a blanket policy. Clearly, a manual solution using a finite number of staff members is not viable.
Read more »
04.02.2009 - 5:00 PM
You've heard the saying that a person is judged by the company he keeps. Well, the same can be said of a Web site. When you look at the links between Web pages as a reflection of the connections between topics, then analyzing a site's link neighborhood can be very telling. At Websense, our analysis leads to one clear conclusion: bad leads to bad.
Read more »
Previous Posts
April 2009
| 04.30.2009 | InfoSec Europe 2009 Report » |
| 04.29.2009 | Designing a JavaScript Interpreter to Emulate Browser Function Scoping » |
| 04.28.2009 | Back from RSA 2009 » |
| 04.10.2009 | This Month in the Threat Webscape » |
| 04.09.2009 | Targeted Attacks Use “Recession Relief” Theme » |
| 04.06.2009 | Video Sharing and the Blogosphere – Can the community police itself? » |
| 04.02.2009 | In Bad Company » |
Archives