nathan hammond

Let me start off by saying that I don't plan on dying any time soon. However, we're all too familiar with the fact that we aren't in control of our own mortality. This point was made painfully clear to me back in 2006 by the death of a close friend at the age of 21, killed ...

Aza Raskin describes here something that I have wanted for years. In short, Aza is proposing is a tightly-integrated-to-the-browser combination of two existing (and possibly abandoned) services: Sxipper, a form filler, and Clipperz, a password manager. It is great that somebody else is talking about it. However, I never did solve the problems I could come ...

Neither Mozilla nor WebKit folks have felt that this issue merits secrecy, so now that information about it is in the wild, I'll go ahead and post about a fun new social engineering hack that will probably be making its rounds in the not-so-distant future. The vulnerability is with regards to how easy it is to ...

This definitely has not gotten enough attention. Originally discussed here in 2006 by a team of people from Stanford, there exists a class of attacks on browsers that enables one to identify which sites a user has visited through either their caching mechanism or CSS. The white paper can be read here, but in short: <style ...