Abusing The HTML5 Data-URI

[Update: Some of these examples were mitigated in Chrome 38 and 39] After seeing in the previous post how Data-URIs can be used as a mechanism to easily carry malicious code, I’ll elaborate more about the issues it presents. Some of it merely exists from the way Data-URIs are »

SVG For Fun and Phishing

What an awesome format is SVG, so powerful and so well supported by browsers. And yet it is barely being used, it’s not getting the love it deserves. Well, browsers love SVG, perhaps too much… SVG files are like little bundles of joy. Encapsulating graphics, animations and logic. One »

The Promise of Mobile HTML5

Less than a year ago it seemed like HTML5 was going strong. With Facebook and Linkedin adopting the technology to reach most of the screens on the mobile and on the desktop. Linkedin had the better hybrid mobile app (HTML5 + native) and published a series of videos and articles about »