By Johannes Ullrich Apple Updates Safari; Paypal fixes interesting CSRF; Decoding F5 Cookies; CAPTCHAS are dead and reborn
Safari (OS X) Update
http://lists.apple.com/archives/security-announce/2014/Dec/msg00000.html
PayPal Vulnerable CSRF Implementation
http://yasserali.com/hacking-paypal-accounts-with-one-click/
Abusing F5 Load Balancer Cookies
http://blog.ptsecurity.com/2014/12/ddos-attack-over-load-balancer-secure.html
Google rolls outnew CAPTCHA
http://googleonlinesecurity.blogspot.com.es/2014/12/are-you-robot-introducing-no-captcha.html More Here