Comments on: McAfee security error

By: Tech News Blog Editor | Jim Connolly

Tech News Blog Editor | Jim Connolly — Tue, 05 May 2009 07:47:19 +0000

I’m amazed how little coverage this story got yesterday. Seems it was only picked up by the tech media- so the average user won’t even know.

Props to ReadWriteWeb for bringing this to my attention!!

By: mckt

mckt — Mon, 04 May 2009 19:43:59 +0000

This XSS hole is bad, but I published a much more critical McAfee hole today- in the very application that clients use to test their own websites.

http://skeptikal.org/2009/05/epic-failure-from-mcafee.html

By: hydrarulz

hydrarulz — Mon, 04 May 2009 13:32:50 +0000

A LOT of websites have that tiny “secure lock” that sais, you’re safe from hackers. or has https enabled and it means that your ass is impenetrable. they and McAfee are very wrong!
XSS is the most popular security hole.
XSS means account stealing, (if permanent) could mean web worm lke the one on twitter or samy worm on myspace.