The Hacker News

Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability

Island found dormant JavaScript injection paths in Adblock for YouTube, a Chrome extension with 10M+ installs, raising ...
Threat Post

Vulnerabilities Leave iTunes, App Store Open to Script Injection

Researchers say iTunes and Apple’s App Store suffer from a persistent input validation and mail encoding web vulnerability. If exploited, it could allow an attacker to inject their own malicious ...
CNET

Microsoft warns of script injection attacks in IE

Microsoft says it's working to fix security vulnerability that lets attackers inject client-side scripts to Internet Explorer users. Josh Lowensohn joined CNET in 2006 and now covers Apple. Before ...
Searchenginejournal.com

Google Tag Manager Contains Hidden Data Leaks & Vulnerabilities

Researchers uncover data leaks in Google Tag Manager (GTM) as well as security vulnerabilities, arbitrary script injections and instances of consent for data collection enabled by default. A legal ...