Daily links for 04/13/2011

• WordPress.com hack exposes confidential code • The Register
  "The company that maintains the WordPress.com blogging platform said hackers gained root access to its servers and made off with sensitive code belonging to it and its partners."
  tags: security hack wordpress privacy
• ModSecurity Advanced Topic of the Week: Integrating Content Security Policy (CSP) - SpiderLabs Anterior
  "Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware."
  tags: mozilla web csp security xss browser
• TippingPoint | DVLabs | Cloud Security: Amazon's EC2 serves up 'certified pre-owned' server images
  "Cloud computing has quickly evolved from a hot industry buzz word into a multi-billion dollar emerging market, with all the big names striving to grab a piece of the pie. Amazon, with its Amazon Elastic Computer Cloud (EC2), is arguably the dominant leader of the cloud services market."
  tags: amazon ec2 cloud security infosec hacking

Posted from Diigo. The rest of my favorite links are here.