ReadWriteWeb

McAfee, widely recognized as one of the leading providers of online security software for both home and business, appears to be struggling to secure its own Web sites, which at the time of writing this post, allow anyone with enough tech savvy to covertly do whatever they want on, and with, the site.

During tests this weekend, we discovered the company who claims to "keep you safe from identity theft, credit card fraud, spyware, spam, viruses and online scams," has several cross-site scripting (XSS) vulnerabilities and provides the bad guys with a brilliant - albeit ironic - launching pad from which to unleash their attacks.

Tomorrow, Sen. Thomas Carper (D-Del.) will introduce the ICE (Information and Communications Enhancement) Act, which would make information security a federal priority and establish a Chief Information Security Officer to report directly to the president.

Currently, national information security responsibilities are divided between the Department of Homeland Security, the Department of Defense, and the National Security Agency. The new National Office for Cyberspace would involve cooperation between all these agencies as well as from the private sector. Potential costs of the new office and related initiatives are as yet unknown.