Exploring Web Worm Threats and Browser Exploits from Black Hat Insights

Exploiting a lack of security checks in browsers and Web servers, Web worms and viruses are likely to become a major threat to surfers, security researchers speaking at the Black Hat Briefings warned on Thursday.

In separate presentations, researchers showed off techniques for using Javascript code on Web pages to grab browser histories and scan internal networks as well as using AJAX--a technology that adds interactive features to Web sites--to create Web viruses that can steal personal information. The threats are not only theory, but have been used to attack MySpace users and Yahoo users, said Billy Hoffman, lead research and development researcher for Web security firm SPI Dynamics.

The link for this article located at Security Focus is no longer available.