ZDNet

Google working on new Chrome security feature to 'obliterate DOM XSS'

Google has created a new browser API that will help Chrome fight certain types of cross-site scripting (XSS) vulnerabilities, adding another level of protection at the browser level to keep users safe ...
ZDNet

Google patches ‘awesome’ XSS vulnerability in Gmail dynamic email feature

Google has resolved an XSS vulnerability in Gmail described by the tech giant's own team as "awesome." On Monday, Michał Bentkowski, Chief Security Researcher at Securitum, disclosed the vulnerability ...
Threat Post

Once Popular Online Ad Format Opens Top Tier Sites to XSS Attacks

Online ad industry moves away from once prolific ads that are now deemed insecure because of DOM-based XSS vulnerabilities. Certain types of online ads that expand, contract and pop-open aren’t just ...