XSS attacks are not new. What makes this particular situation unique is the process the ADC used to uncover the attack. Read this paper to find out so much more about XSS attacks.

FREE MEMBERSHIP - Create your personalized Bitpipe Service!

Feb 10, 2012

The Anatomy of a Cross-Site Scripting Campaign sponsored by Imperva
The Imperva Application Defense Center (ADC) discovered a cross-site scripting (XSS) vulnerability in the .com site. The problem was first found in a hacker forum, which then led to the discovery of the XSS attack server. The XSS attack server is still active. By studying the characteristics of the attack, the ADC was able to detect more XSS cookie stealing campaigns. To date, this campaign has affected more than 3,000 individuals across three unique XSS incidents. While the largest XSS campaign found was a porn site, other types of applications such as online gaming and online forums were compromised in the exact same way. (THIS RESOURCE IS NO LONGER AVAILABLE.)

See what other users are reading via our Daily Top 50 Report

TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines


Definitions: A B C D E F G H I J K L M N O P Q R S T U V W X Y Z Other
TechTarget Corporate Web Site \| Media Kits All Rights Reserved, Copyright 2000 - 2012, TechTarget \| Read our Privacy Statement