Legal threat forces cancellation of Black Hat RFID hacking demo

A security researcher scheduled to present information on issues with radio-frequency identification (RFID) technology at the Black Hat Federal conference this week was silenced by security technology giant HID Global, which claimed the presentation would violate its intellectual property.

Five mistakes of data encryption

This article covers some of the other mistakes that often occur when organizations try to use encryption to protect data at rest and data in transit and thus improve their security posture.

Firefox, IE7 open to URL spoof

Firefox and IE7 do not properly handle JavaScript “onUnload” events and can be tricked into taking the user to an unintended destination.

Xbox 360 Hypervisor Security Protection Hacked

We have discovered a vulnerability in the Xbox 360 hypervisor that allows privilege escalation into hypervisor mode. Together with a method to inject data into non-privileged memory areas, this vulnerability allows an attacker with physical access to an Xbox 360 to run arbitrary code such as alternative operating systems with full privileges and full hardware access.