Aviv Raff, an Israeli security researcher has made an unpatched Internet Explorer 7 & 8 vulnerability public by hiding it on his blog.

Creating a vulnerability treasure hunt on your blog is one technique you wont find in any SEO book. We assume this is a publicity stunt, especially as an exploit of this caliber could […]

I phoned my bank to activate my card the other day. The automated voice required a date of birth and the number of digits in my Mother’s maiden name. Lets assume an attacker can get this information, lets be realistic, what could really happen?

Lets explore some ideas of what an attacker could do with enough […]

This article discusses some simple, easy to follow steps to increase your personal security on Facebook.

Golden Rule - Assume that the personal information and photos you display are publicly available and now just available to specific friends.
Strong Passwords - It may seem obvious but make sure you use a strong password for your account. Also, […]

Having fun with FeedBurner Awareness API.

The FeedBurner Awareness API (AwAPI) allows publishers of FeedBurner feeds to reuse the detailed traffic statistics we capture for any of their feeds. Third-party applications and web services that consume feeds can leverage this data to provide useful feed awareness statistics to potential subscribers… - awarenessapi

In October 07, BlogSecurity released […]

I really love the Gravatar concept. Its simple, useful, powerful and centrally managed, but how secure is it to use on a blog or service?

Regular users may have already seen that we have implemented Gravatars onto BlogSecurity; so its safe to use then, right?

I made a point on our new BlogSec-News service a couple days […]