Joe Stagner anounced a new AJAX Security Webcasts series starting next thursday. Through the fact that it is primarly targeted to ASP.NET world, I think it can be usefull for any AJAX developer. Here are the links to register for all five in the series.

• Live From Redmond: AJAX Security Basics- The Building Blocks to Protecting Your Applications Built with ASP.NET AJAX
• Live From Redmond: How Hackers Reverse Engineer and Exploit an ASP.NET AJAX Application
• Live From Redmond: The Brave New World of AJAX Hacking (and prevention using ASP.NET)
• Live From Redmond: The Next Generation of AJAX Attacks – A New Generation of Attack Theories
• Live From Redmond: Best Practices: A Look at Developer ASP.NET AJAX Security Mistakes

There is an new exploit for WordPress. It was reported here. I did couple of tests and have to say that it works for me only on versions previous to current 2.0.6. But according to source:

WordPress < = 2.0.6 wp-trackback.php Zend_Hash_Del_Key_Or_Index /
/ SQL injection admin hash disclosure exploit
(needs register_globals=on, 4 <= PHP < 4.4.3,< 5.1.4)

Under 2.0.6 I was unable to run it… But if you have any previous version I can only recommend you upgrade!

On Wednesday, August 30, 2006 at 01:00:00 UTC time , the latest WordPress Bug Hunt will commence. The fun starts when you show up, so please be prompt ;-) The goal of a Bug Hunt is to find, confirm, and fix bugs, then submit and test patches for those bugs. A WordPress Bug Hunt normally commences with a session on the #wordpress-bugs IRC channel on IRC.freenode.net. There are always numerous bug hunting opportunities available for Bug Hunters. PHP coding experience is not necessary — all participants are welcome to join!

AJAX is pretty cool stuff. But at Black Hat USA 2006 in Las Vegas and other events, the downside of AJAX is getting its due. ''We are seeing bad design choices,'' says SPI research engineer Billy Hoffman.Full article is available at SearchSecurity.com.

Wired – A German computer security consultant has shown that he can clone the
electronic passports that the United States and other countries are
beginning to distribute this year. To read full article about this issu click here.