if you’re still running WordPress 2.3.3, now might be a good time to consider an upgrade. a recent exploit seems to turn your blog into a spamlink-farm, which might ultimately lead to a site-wide ban from Google’s index (as happened to Austrian proto-blogger Helge). to check if your blog is affected, look for the existence [...]
don’t forget to upgrade your Wordpress installation to version 2.2.2 (2.0.11 if you’re still on the legacy-branch). there have been some security leaks disclosed last week, so this is mandatory. the update should’nt break anything…if you encounter any problems on this blog (which has just been upgraded), feel free to shout – thx!
in case you haven’t been aware how easy it is to fake the originating number (‘from’) of an SMS message, ONLamp features a step-by-step guide on spoofing Twitter (and similar services involving authentication mechanisms solely based on the senders phone number). this basically means that attackers only need to know a users associated cellphone number [...]
Google Blogoscoped has a detailed description of the latest Google security-exploit, which apparently now has beend fixed. the exploit was based on the possibility of hosting malicous content on a google.com subdomain, alllowing attackers to capture any visitors Google-cookie.
IBM-developers re-created a virtual representation of the Australian Open tennis-stadium within SecondLife. the build can replay tournament-games [...]
a major security-vulnerability in popular open-source blogging-tool Wordpress has been disclosed. Automattic responded immediatelly by releasing version 2.0.6, which takes care of the issues. might be a good hint for all users to subscribe to their developer-blog (I wonder if the hosted software at wordpress.com uses the same codebase and is/was therefor prone to the [...]