Interview With Jeremiah Grossman on ClickJacking attack

From: <bugtraq_at_nospam>
Date: Mon Oct 06 2008 - 05:48:38 GMT
To: webappsec@securityfocus.com

I've just published an interview with Jeremiah grossman on ClickJacking. Looks as though CSRF token based protections may not be as safe as we thought...

Interview: Jeremiah Grossman provides more details on clickjacking attack http://www.cgisecurity.org/2008/10/interview-jerem.html

Regards,
- Robert
http://www.cgisecurity.com/

Sponsored by: Watchfire
Methodologies & Tools for Web Application Security Assessment With the rapid rise in the number and types of security threats, web application security assessments should be considered a crucial phase in the development of any web application. What methodology should be followed? What tools can accelerate the assessment process? Download this Whitepaper today!

https://www.watchfire.com/securearea/whitepapers.aspx?id=70170000000940F

This message: [ Message body ]
Next message: Dave Ferguson: "Re: user agent string database"
Previous message: Jabra: "User Agent Lookup via XML file (ua_lookup.pl)"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]