Security experts are cautioning systems administrators not to overreact to news of a newly discovered attack that under some circumstances can compromise users’ HTTP authentication credentials. News of the attack began spreading earlier this week after a security company posted on its Web site a white paper detailing what it said was months of research into the technique. The attack is closely related to the well-known class of attacks known as cross-site scripting and takes advantage of a request method called TRACE used by browsers to communicate with Web servers and is turned on by default in most Web servers. Full Story
About OODA Analyst
OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.