| When |
Company & Incident |
| 2013-06-07 |
Flash-based XSS Mayhem: Most Security Solution Vendors Vulnerable [Symantec, AVG, Avira, BitDefender, McAfee, TrendMicro] |
| 2013-06-04 |
Fortinet Claims Google's Disclosure Policy Irresponsible |
| 2013-05-28 |
Secunia Broadcasts Zero-day Vulnerability via Email |
| 2013-05-20 |
XSS in eval.symantec.com |
| 2013-05-20 |
Kali Linux DOM Based XSS Writeup |
| 2013-05-12 |
XSS in The Hacker News |
| 2013-05-12 |
XSS in Offensive Security |
| 2013-03-21 |
XSS in InfoSec Institute |
| 2013-03-20 |
DOM Based XSS In Microsoft |
| 2013-03-16 |
Man who conned a country - Police hunt for dubious cyber hero they posed with |
| 2013-03-15 |
Researcher: Security appliances are riddled with serious vulnerabilities |
| 2013-03-14 |
[NIST NVD] Downed US vuln catalog infected for at least TWO MONTHS |
| 2013-03-13 |
Cisco accused of data theft |
| 2013-03-13 |
Cops Arrest Tech Whiz For Allegedly Drugging, Assaulting Women |
| 2013-03-13 |
Security News Website Among 30 QuinStreet Compromised Sites |
| 2013-03-12 |
Avast Germany Hacked & 20,000 Credentials leaked with payment information |
| 2013-02-24 |
DOM Based XSS in AVG |
| 2013-02-23 |
S2Security Twitter Account Compromised |
| 2013-02-15 |
Directory Traversal and XSS Vulnerabilities Found in Avira’s BetaCenter |
| 2013-02-08 |
Security Firm Bit9 Hacked, Used to Spread Malware (After not using their own product) |
| 2013-02-03 |
Self Proclaimed Ethical Hacker Trishneet Arora website hacked by Team Cyber-Rog |
| 2013-01-30 |
GIAC Cross-Site Scripting |
| 2013-01-25 |
Rafay Baloch found Non-persistent XSS vulnerability in Mcafee and Symantec |
| 2013-01-18 |
Zscaler Accused of Throwing Stones From a Glass House Over XSS Vulnerability |
| 2012-12-11 |
ExploitHub.com Hacked |
| 2012-11-05 |
PayPal, Symantec hacked as Anonymous begins November 5 hacking spree |
| 2012-11-06 |
Cyberheists 'A Helluva Wake-up Call' to Small Biz (Primary Systems) |
| 2012-11-05 |
Attorney Adds Security Company, State IT Department to Data Breach Lawsuit (Trustwave) |
| 2012-10-31 |
Persistent XSS and SQL Injection Flaws on ESET Taiwan Website Fixed |
| 2012-10-22 |
Cisco machine gets listed by blackhat org that rents out hacked PCs |
| 2012-10-11 |
Eleven GmbH Twitter Compromised, Blamed on "Hack Attack" |
| 2012-10-05 |
McAfee, Trust Guard certifications can make websites less safe |
| 2012-10-03 |
'Scareware' trickster fined $163m by US authorities |
| 2012-09-28 |
Security Researchers Troll Hakin9 Magazine |
| 2012-08-27 |
GlobalCerts hacked, data leaked by #Anonymous |
| 2012-08-22 |
Symantec XSS |
| 2012-08-10 |
Kaspersky admits counterhacking |
| 2012-07-31 |
Apple Security Team's Oh-So-Brief Black Hat Appearance |
| 2012-07-30 |
BT backpedals on claims almost every Android device has malware |
| 2012-07-14 |
Irony: Verbose IIS Error on Apple.com |
| 2012-07-12 |
[AusCERT] Digital disaster as online security firm loses personal data in the mail |
| 2012-07-03 |
Hacker Leaks Emails Allegedly Stolen from Trend Micro, Firm Denies Claims |
| 2012-06-22 |
Dear Microsoft: fsf.org is not a "gambling site" |
| 2012-06-03 |
Microsoft certification authority signing certificates added to the Untrusted Certificate Store |
| 2012-05-20 |
Hackers hit cyber security agency's site |
| 2012-05-02 |
7 Ways Oracle Puts Database Customers At Risk |
| 2012-05-01 |
Oracle scrambles to contain 0-day disclosure snafu |
| 2012-04-03 |
Email cock-up blamed in Check Point domain expiry snafu |
| 2012-03-07 |
Microsoft.com XSS |
| 2012-03-07 |
Panda Security defaced, disingenuous reply follows |
| 2012-03-06 |
Ex Employee Hacked and Defaced Crezone Technologies |
| 2012-03-06 |
Microsoft Bosnia Hacked and Defaced By Turkey Cyber Army |
| 2012-02-25 |
Anonymous hacks Infragard again |
| 2012-02-13 |
Microsoft India's Online Store Hacked; Reportedly Stored User Data In Plain Text |
| 2012-02-08 |
Trustwave admits issuing man-in-the-middle digital certificate |
| 2012-02-02 |
Key Internet operator VeriSign hit by hackers |
| 2012-01-18 |
McAfee to plug 'spammer' hole this week |
| 2012-01-11 |
Pentestmag.com Hacked, Serving Malware |
| 2012-01-09 |
Top German cop uses spyware on daughter, gets hacked in retaliation |
| 2012-01-06 |
Symantec Confirms Norton AV Source Code Exposed |
| 2011-12-20 |
The Dark Side of B-Sides; Mike Dahn |
| 2011-11-30 |
Oops! McAfee discloses 1k customer e-mails |
| 2011-11-27 |
'Charlatans' Said to Exaggerate Mobile Malware Fears |
| 2011-11-27 |
EC-Council - CEH - Unethical Behavior |
| 2011-10-15 |
[AiPlex Software] Anti-Piracy Outfit Tries to Erase History |
| 2011-10-11 |
Don't worry about zero-days, says Microsoft |
| 2011-10-04 |
Firefox advises users to disable McAfee plugin |
| 2011-09-29 |
WebMax : Laptop Virus Removal Experts (laptopvirusrepair.co.uk) hacked, serves malicious code |
| 2011-09-28 |
Strategic Security (strategicsec.com) Defaced |
| 2011-09-26 |
Oracle's MySQL.com hacked for 2nd time, serves up malware |
| 2011-09-22 |
Core Security (coresecurity.com) defaced via DNS hijacking |
| 2011-09-21 |
Symantec/Norton's cybercrime numbers don't add up |
| 2011-09-16 |
INSA, Top Spy Website Hacked |
| 2011-09-12 |
GlobalSign finds no sign of fake certificates after hack |
| 2011-09-10 |
DigiNotar breached, hundreds of forged SSL certificates issued |
| 2011-09-09 |
Microsoft leaks patch info four days early |
| 2011-08-30 |
Absolute Software Sued for Spying on Sex Chats |
| 2011-08-25 |
RankMyHack.com Defaced |
| 2011-08-25 |
Ethicalhackingcourses.com Defaced |
| 2011-08-19 |
Anonymous breaches US defense contractor Vanguard |
| 2011-08-18 |
McAfee's 'Shady RAT' report called alarmist, flawed |
| 2011-08-09 |
PCI Council revokes company's QSA status |
| 2011-07-29 |
Anonymous releases documents it says came from ManTech |
| 2011-07-25 |
Anonymous hacks Italy's cybercrime police |
| 2011-07-22 |
Abhaxas teaches Joseph K Black a lesson to learn |
| 2011-07-22 |
German national cyber security centre attacked by hackers |
| 2011-07-21 |
Cyberdouchery of Kasperskian Proportions |
| 2011-07-11 |
[Updated]Hackers claim they exposed Booz Allen Hamilton data |
| 2011-07-11 |
MS security centre search poisoned with infectious smut |
| 2011-07-05 |
AusCERT jumps the gun on BIND bug release |
| 2011-06-23 |
Black & Berg Cybersecurity Consulting Hacked Again |
| 2011-06-09 |
[Black & Berg] Security 'expert' offers $10K reward for site hack, LulzSec obliges |
| 2011-06-09 |
Certigna publishes SSL private key by mistake |
| 2011-06-06 |
Unveillance faces troubled waters in the wake of LulzSec visit |
| 2011-06-03 |
[Updated] LulzSec Hacks FBI Affiliate Infragard |
| 2011-06-03 |
[Updated] Cisco deceived Canadian courts in audacious ploy to jail executive, judge finds |
| 2011-05-31 |
New Apple antivirus signatures bypassed within hours by malware authors |
| 2011-05-24 |
New hack on Comodo reseller exposes private data |
| 2011-05-05 |
LastPass Says Hackers May Have Stolen Password Data |
| 2011-04-27 |
Oracle hedging its vulnerability reports? |
| 2011-04-21 |
Hundreds log into a rogue wireless hotspot at Infosec conference |
| 2011-04-21 |
[Ashampoo] Hackers breach security vendor's defences |
| 2011-04-18 |
Whitehats pierce giant hole in Microsoft security shield |
| 2011-04-11 |
[Barracuda] Hack attack spills web security firm's confidential data |
| 2011-03-23 |
[Comodo] Phony SSL Certificates issued for Google, Yahoo, Skype, Others |
| 2011-03-17 |
RSA warns SecurID customers after company is hacked |
| 2011-02-09 |
How one man tracked down Anonymous - and paid a heavy price (HBGary Federal) |
| 2011-01-28 |
Kaspersky Anti-Virus Source Code Leaks Online |
Copyright 2007-2011 by Attrition.org. Permission is granted to quote, reprint or redistribute provided the
text is not altered, and appropriate credit is given.
This page is a showcase of security companies that epitomize irony. Corporations and groups that espouse the
ideals of secure computing and even go so far as to offer (and profit from) products and services
promising such security, while unable to keep their own systems
from being attacked and compromised. These incidents range from corporate web defacements
to virus/worm infections and other embarassing events. In the case of multiple articles, follow-ups
are included below. We also maintain a list of security companies that spam as well
as security companies with auto-update mechanism problems.
