January 30, 2013

XSS attacks see big rise last quarter

Cross-site scripting (XSS) attacks have been on the rise in the United States and Europe, up more than 160 percent from October to December of last year, according to a cloud hosting provider. On Tuesday, London-based FireHost released findings that XSS attacks blocked by FireHost's servers increased from more than one million to 2.6 million during the time studied, outpacing all of the common web attack vectors, including SQL injection. XSS is carried out when an attacker inserts malicious code into web pages, potentially allowing them to access information stored in the browser, such as cookies and session tokens.

Related Articles
Related Topics

Sign up to our newsletters

More in News

Three LulzSec members plead guilty in London

Ryan Ackroyd, 26; Jake Davis, 20; and Mustafa al-Bassam, 18, who was not named until now because of his age, all admitted their involvement in the hacktivist gang's attack spree.

WordPress tightens security with two-factor authentication

The new feature is immediately available for users and "secret" codes can be accessed via SMS or through the Google Authenticator app.

Microsoft fixes three "critical" flaws with Patch Tuesday release

The biggies are two vulnerabilities in Internet Explorer and a single weakness in Remote Desktop Connection.