CNET

Microsoft warns of script injection attacks in IE

Microsoft says it's working to fix security vulnerability that lets attackers inject client-side scripts to Internet Explorer users. Josh Lowensohn joined CNET in 2006 and now covers Apple. Before ...
Hosted on MSN

Cross site scripting decoded how hackers turn a browser bug into a full scale breach

Cross-Site Scripting (XSS) attacks are often misunderstood as harmless glitches that display alerts in the browser, while in actuality they are one of the most powerful and malicious vulnerabilities ...