news

1..Design flaw discovered earlier this week in Web-based Google applications spotlights a troublesome security trend for IT departments: what to do about protecting internal systems and data as workers access Web-based e-mail and collaborative applications using their employer's PCs. Google's problem, first reported by the Googlified Web site and since patched by Google, resulted from the way Google software stored information in a JavaScript file on the company's servers. Prior to the patch, an attacker could overwrite the JavaScript Object Notation, or JSON, that Google used to send information from its servers to a user's client device and gain access to all of the contact information stored in a user's Gmail account, as long as that user was logged on to any Google application. This is known as a "cross-site request forgery.
2..IT experts buzzed by the phenomenon of ‘Web 2.0’ have been sounded the final call to share their bright ideas on how to revolutionise the internet.O’Reilly media group, which invented the term, wants a cadre of IT stars, like hackers, developers and entrepreneurs, to discuss the second birth of the Web at their conference in May.
Anyone with a pulse on “what's viable now, and what's lurking just below the radar” thanks to advances in net technology can submit themselves for a place at the California-based event.