Wikipedia hit by self-propagating JavaScript worm that vandalized pages

The Wikimedia Foundation suffered a security incident today after a self-propagating JavaScript worm began vandalizing pages ...
InfoWorld

Three web security blind spots in mobile DevSecOps pipelines

Mobile platforms operate under fundamentally different trust assumptions than we relied on for web security. Your mobile ...
IEEE

Improving AFLGo's Directed Fuzzing by Considering Indirect Function Calls

Abstract: Directed fuzzing is a sophisticated security testing technique that aims to find vulnerabilities in specific locations of a software system. It is thus used in cases where targeting a ...
IEEE

An Asynchronous Call Graph for JavaScript

Abstract: Asynchronous JavaScript has become omnipresent, yet is inherently difficult to reason about. While many recent debugging tools are trying to address this issue with (semi-)automatic methods, ...