Web 2.0 Threats and Risks for Financial Services 56
An anonymous reader writes "Companies are tuning into Web 2.0 but are simultaneously exposing their systems to next generation threats such as Cross site Scripting, Cross Site Request Forgery and Application interconnection issues due to SOA. With regard to security, two dimensions are very critical for financial systems — Identity and Data privacy. Adopting the Web 2.0 framework may involve risks and threats against these two dimensions along with other security concerns. Ajax, Flash (RIA) and Web Services deployment is critical for Web 2.0 applications. Financial services are putting these technologies in place; most without adequate threat assessment exercises."
CSRF and XSS FAQ's (Score:4, Informative)
The Cross Site Request Forgery FAQ [cgisecurity.com]
The Cross Site Scripting FAQ [cgisecurity.com]
Re:The real problem (Score:4, Informative)
Re:honestly... (Score:3, Informative)
Depending on your exact meaning of "old", you might be very, very wrong. Many ATMs do, in fact, run Windows [google.com].