Since last week we saw the publishing of confidential documents from inside Twitter (I doubt any of you missed that, but if you did, TechCrunch last week got passed documents from a hacker who figured out how to get into several accounts at Twitter).

An update to the WordPress platform, version 2.8.2, was issued earlier today that addresses a security issue known as XSS or  cross-site scripting.

If you are running a Simple Machines Forum, there is a new hack making the rounds, and it is enough to turn your forum into something you no longer control. The hack first showed up May 01 2009, and has been gaining steam over the last couple of days. If you run the software, make [...]

Bandit Defense has posted a new Wordpress hack, but there are some things you need to know about first. The biggest one is that it relies on poor security at the hosting company, and already knowing the password to the Wordpress website you want to hack.

Hacking is a major problem that is increasing day by day. The Internet world is flocked with hundreds of, infact of thousands of anti hacking software but their effectiveness is still in question! In a recent post at Google’s Webmaster Central blog, Search Quality Team of Google talks about two most common attacks resulting in [...]

In what is becoming far too normal, the Dolphin Stadium Web Site was hacked for a few hours and was delivering malware to people who visited it.

Monster has been been hacked again, along with USAJobs.gov (which monster runs), this time with a loss of information for people who are seeking jobs. Be careful which job opportunities you respond to, and change your password.

You might be surprised by how mundane this list is, most security engineers should have them in their toolboxes as well. A few here are new to me, and worth sharing.