- Vuln: Mahara Resume Blocktype Cross Site Scripting Vulnerability
- Vuln: Mahara Admin Password Reset Security Bypass Vulnerability
- Vuln: Linux Kernel 'e1000/e1000_main.c' Remote Denial of Service Vulnerability
- Vuln: Wireshark 1.2.0 Multiple Vulnerabilities
- Vuln: Best Practical Solutions RT 'Custom Field' HTML Injection Vulnerability
- Vuln: Expat UTF-8 Character XML Parsing Remote Denial of Service Vulnerability
- Vuln: IBM Tivoli Storage Manager Multiple Remote Vulnerabilities
- Vuln: Sun Solaris XScreenSaver Popup Windows Security Bypass Vulnerability
- Vuln: Hitachi Cosminexus XML Processor Denial of Service Vulnerability
- Vuln: Apple Mac OS X 'ptrace' Mutex Handling Local Denial of Service Vulnerability
Search
Search Result
-
Malware writers target online gamers
Category: Network Security & Hacking News/Latest Security News
Online games have been spared so far from massive amounts of malware, but things seem to change lately, as more and more malware writers concentrate their efforts on writing malicious software that wi... ...Tuesday, 03 November 2009 -
FT Tech Blog: Google Wave - Changes coming
Category: Network Security & Hacking News/Latest Security News
FT Tech Blog: Google Wave - Changes coming FT Tech Blog: Google Wave - Changes coming Read Full ArticleTuesday, 03 November 2009 -
Smoking (Cloud) Crack
Category: Network Security & Hacking News/Latest Security News
... this in my GPG Key Management & Signing Article. Some Cloud Crack™ was being smoked by someone, as the crackers had access to the secret key, which shouldn't ever happen. It doesn't always cost ...Tuesday, 03 November 2009 -
Tis the Season for Christmas Spam! Fa La La La La…
Category: Network Security & Hacking News/Global Security News
It didn't take long for spammers to change from Halloween lures to spam and malware. They've already moved to the Christmas season, and we have started to see emails from the Cutwail botnet that are using ...Tuesday, 03 November 2009 -
Facebook Phishing Campaign Pushes ‘Cocktail’ Attack
Category: Network Security & Hacking News/Global Security News
We have already discussed the Facebook phishing campaign. Now the scammers are using the phishing campaign not just for spamming but also for a cocktail attack. The scammers have targeted Facebook, telling ...Tuesday, 03 November 2009 -
Symantec patches Altiris solutions
Category: Network Security & Hacking News/Latest Security News
The web-based management servers install a vulnerable ActiveX control in Internet Explorer that allows attackers to inject and execute arbitrary code in a client The web-based management servers install ...Tuesday, 03 November 2009 -
FT Tech Blog: Google Wave - Changes coming
Category: Network Security & Hacking News/Latest Security News
FT Tech Blog: Google Wave - Changes coming FT Tech Blog: Google Wave - Changes coming Read Full ArticleMonday, 02 November 2009 -
Into the Breach – Audio Series – Chapter 4 (The Solution: Manage People, Information and Risk)
Category: Network Security & Hacking News/Latest Security News
... four wraps up the first part of Into the Breach with a candid discussion about the current approaches to managing risk – and why they are not working. Michael explains that risk management is based on ...Monday, 02 November 2009 -
Pricing Scheme for a DDoS Extortion Attack
Category: Network Security & Hacking News/Latest Security News
With the average price for a DDoS attack on demand decreasing due to the evident over-supply of malware infected hosts, it should be fairly logical to assume that the "on demand DDoS" business model run ...Monday, 02 November 2009 -
My WAF went W00F!
Category: Network Security & Hacking News/Latest Security News
We have finally made it this week into Mathieu Dessus'slist of fingerprinted WAFs. Wow! You're probably wondering by now what is this list and why should you care about it? Well, let me tell you all about ...Monday, 02 November 2009 -
Dutch hacker holds jailbroken iPhones "hostage" for €5
Category: Network Security & Hacking News/Latest Security News
Though jailbreaking an iPhone certainly opens up opportunities to add functionality that Apple doesn't approve of, it can also make an iPhone less secure. Several Dutch iPhone users found that out the ...Monday, 02 November 2009 -
Interesting Information Security Bits for 11/02/2009
Category: Network Security & Hacking News/Latest Security News
Good afternoon everybody! I hope your day is going well. Here are today's Interesting Information Security Bits from around the web. A very good article on an issue that we need to think about as those ...Monday, 02 November 2009 -
Norwegian consumer lobbyists take on Amazon over Kindle terms
Category: Network Security & Hacking News/Latest Security News
The Norwegian consumer lobby group that put pressure on Apple to release iTunes-bought music from digital rights management (DRM) technology has trained its sights on Amazon. The Norwegian consumer lobby ...Monday, 02 November 2009 -
Norwegian consumer lobbyists take on Amazon over Kindle terms
Category: Network Security & Hacking News/Latest Security News
The Norwegian consumer lobby group that put pressure on Apple to release iTunes-bought music from digital rights management (DRM) technology has trained its sights on Amazon. The Norwegian consumer lobby ...Monday, 02 November 2009 -
Your new client security analyst
Category: Network Security & Hacking News/Latest Security News
... of ground: client security, client management, endpoint virtualization, Bring-Your-Own-PC programs, full disk encryption and several other topics. While it would be impossible to fill her shoes, I am strapping ...Monday, 02 November 2009 -
Tenable Network Security Podcast - Episode 10
Category: Network Security & Hacking News/Latest Security News
... to be in charge of risk management and security in your environment and make sure it reflects your bottom line, not someone else's. Windows 7 Forensics - Great post from Rob Lee over at the SANS Institute ...Monday, 02 November 2009 -
FDIC: Uptick in 'money mule' scams
Category: Network Security & Hacking News/Latest Security News
The Federal Deposit Insurance Corporation (FDIC) is warning financial institutions about an uptick in scams involving unauthorized funds transfers from hacked online bank accounts to so-called "money mules," ...Sunday, 01 November 2009 -
Software Security Initiatives:Maturity Models, Metrics and Business Cases
Category: Network Security & Hacking News/Latest Security News
... WHID to make the case for software security root causes of most of cybercrime incidents occurring today. Since the business case has often to be made for senior management such as CIOs that need to sponsor ...Sunday, 01 November 2009 -
How Secure is your UK Online Banking?
Category: Network Security & Hacking News/Latest Security News
The UK maybe still in the midst of a recession, but these times are proving anything but a recession for cybercriminals, as UK Online Banking fraud is sky rocketing at the moment. The ‘Financial Fraud ...Sunday, 01 November 2009 -
Tabletop Science
Category: Network Security & Hacking News/Latest Security News
Mordaxus emailed some of us and said "I hope this doesn't mean MG has jumped the shark." What was he talking about? Apparently, ThinkGeek now has a "Molecular Gastronomy Starter Kit." For those of you ...Sunday, 01 November 2009 -
Bejtlich and Bradley on SANS Webcast Monday 2 Nov
Category: Network Security & Hacking News/Latest Security News
Ken Bradley and I will conduct a Webcast for SANS on Monday 2 Nov at 1 pm EST. Check out the sign-up page. I've reproduced the introduction here. Every day, intruders find ways to compromise enterprise ...Friday, 30 October 2009 -
Survey: Employees spend work time shopping
Category: Network Security & Hacking News/Latest Security News
... stop the use of work computers for online shopping,” said Robert Stroud, international vice president of ISACA and vice president of IT service management and governance for the service management business ...Friday, 30 October 2009 -
SanDisk Cruzer Enterprise Flash Drives Earn Certification
Category: Network Security & Hacking News/Latest Security News
... flash drives can be easily managed with SanDisk’s Central Management and Control (CMC) software. SanDisk CMC server software provides lifecycle management for Cruzer Enterprise drives, including password ...Friday, 30 October 2009 -
Check Point Adds Windows 7 OS Support To Endpoint Security
Category: Network Security & Hacking News/Latest Security News
... process benefits administrators by reducing deployment cost and complexity while increasing management efficiency. With a single agent, update, scan, and interface Endpoint Security simplifies the end-user ...Friday, 30 October 2009 -
A makeover for federal cybersecurity reporting
Category: Network Security & Hacking News/Latest Security News
... from hackers, viruses and cyber spies. Critics of the Federal Information Security Management Act (FISMA) long have complained that the way it has been implemented often amounts to a massive paperwork ...Friday, 30 October 2009 -
Oracle Database 11g PL/SQL Programming (Osborne ORACLE Press Series) (Paperback) newly tagged "databases"
Category: Network Security & Hacking Products/Databases
... First tagged "databases" by PLSQL Mike "PLSQL Mike" Customer tags: oracle 11g(5), plsql(4), oracle(2), oracle database, sql programming, databases, database management systems, plsql 11g, plsql ...Friday, 30 October 2009 -
Defeating Zombies: Five Ways To Improve Defenses
Category: Network Security & Hacking News/Latest Security News
... a shift from attackers targeting network services, and moving towards attacking web application and client software. These new methods require updated education for management and the implemention of new ...Friday, 30 October 2009 -
Getting to Know your Infrastructure
Category: Network Security & Hacking News/Latest Security News
Knowing your network is a fundamental step for building a successful Vulnerability Management (VM) Project. Knowing your network is a fundamental step for building a successful Vulnerability Management ...Thursday, 29 October 2009 -
Twitter warns of new phishing attacks
Category: Network Security & Hacking News/Latest Security News
Phishing campaign uses a direct message and a fake Twitter login page to pilfer credentials. Twitter issued a spam warning via a Twitter message telling users not to click on a direct message that sends ...Thursday, 29 October 2009 -
CubeCart 4 session management bypass leads to administrator access
Category: Network Security & Hacking News/Global Security News
Release Date: 2009/10/29 Author: Bogdan Calin (bogdan acunetix com) Severity: Critical Vendor Status: Vendor has released an updated version Release Date: 2009/10/29 Author: Bogdan Calin (bogdan ...Thursday, 29 October 2009 -
Mozilla update repairs Firefox buffer overflow vulnerabilities
Category: Network Security & Hacking News/Latest Security News
Repairs fix several critical memory corruption errors and buffer overflow flaws that could cause the browser to crash and leave users vulnerable to attack. Mozilla issued an update to its popular Firefox ...Thursday, 29 October 2009 -
Securing the Toughest Times
Category: Network Security & Hacking News/Latest Security News
... the organization. While secrecy is necessary to protect the process, trusted relationships must be established between all involved, including HR, Security, Legal, and Management. Security needs to know ...Wednesday, 28 October 2009 -
Partnerships and Procurement Are Not the Answer
Category: Network Security & Hacking News/Latest Security News
The latest Federal Computer Week magazine features an article titled Cyber warfare: Sound the alarm or move ahead in stride? I'd like to highlight a few excerpts. Military leaders and analysts say evolving ...Wednesday, 28 October 2009 -
Black Box vs White Box. You are doing it wrong.
Category: Network Security & Hacking News/Latest Security News
... as one of the criteria, but again, not the testing methodology itself. Just as you wouldn’t compare the value of network pen-testing against patch management, firewalls against IPS, and so on. Understanding ...Wednesday, 28 October 2009 -
Know Your Tools
Category: Network Security & Hacking News/Latest Security News
Ever have one of those days where nothing really seems to go right? You're working on something that should be simple and it ends up throwing seemingly unexplainable errors back at you no matter what you ...Wednesday, 28 October 2009 -
Fordham report on Children's Privacy
Category: Network Security & Hacking News/Latest Security News
Following the No Child Left Behind mandate to improve school quality, there has been a growing trend among state departments of education to establish statewide longitudinal databases of personally identifiable ...Wednesday, 28 October 2009 -
Facebook users targeted by password change scam
Category: Network Security & Hacking News/Latest Security News
If you are one of the 300 million people who actively use Facebook, this warning is for you. A new spam campaign that targets users of the popular social network is under way, so if you get an email w... ...Wednesday, 28 October 2009 -
OAMP: OpenBSD 4.6 + Chroot Apache + MySQL + PHP
Category: Network Security & Hacking News/Latest Security News
... there's a NOPASSWD version of the same, a few lines down. I don't recommend using this option on a production server, but it may make system management more friendly on your development servers and workstations. ...Wednesday, 28 October 2009 -
Fake Facebook Password Notification Leads to Malware
Category: Network Security & Hacking News/Latest Security News
A new spam campaign that purports to be from Facebook is making rounds today. It bears the subject, “Facebook Password Reset Confirmation,” and informs users that their passwords have been changed for ...Tuesday, 27 October 2009 -
Installing OpenBSD 4.6, Virtual machine snapshots
Category: Network Security & Hacking News/Latest Security News
OpenBSD's install process changed for the first time in a very long time with the release of 4.6.For the most part, I feel like the changes are for the better. The install script asks fewer questions, ...Tuesday, 27 October 2009 -
Terrorists in Kabul In Stand-off With Afghan Forces
Category: Network Security & Hacking News/Global Security News
Afghan forces exchanged gunfire with a group of terrorists holed up inside an international guest house in the centre of Kabul on Wednesday, police said. The United Nations mission in Afghanistan said ...Tuesday, 27 October 2009 -
Initial Thoughts on Cloud A6
Category: Network Security & Hacking News/Latest Security News
... of scanning for network vulnerabilities, but also configuration management, asset management, patch remediation, compliance, etc. Still with me? In August Network World posted A6 promises a way to check ...Tuesday, 27 October 2009 -
Interesting Information Security Bits RSA Catch-up Part 2
Category: Network Security & Hacking News/Latest Security News
... add-ons ) Medical Records: Stored in the Cloud, Sold on the Open Market | Threat Level | Wired.com Tags: ( data-leakage phi cloud ) Moving from a Threat Centric to Trust Centric Endpoint Management ...Tuesday, 27 October 2009 -
Another acquisition in the Web security service space — Cisco Systems acquires ScanSafe
Category: Network Security & Hacking News/Latest Security News
... their management, “Why not consider cloud services (to fulfill this IT function)?” Is cloud Web security service for you? A good answer to the “Why not consider cloud services?” question requires examining ...Tuesday, 27 October 2009 -
Toata Scanning for Zen Shopping Cart with Brain File
Category: Network Security & Hacking News/Latest Security News
... in their operating system, content management application and other web components. If you would like assistance checking your web application or vulnerability assessment performed on your web application, ...Tuesday, 27 October 2009 -
Acunetix WVS Version 6.5 build 20091027 released
Category: Network Security & Hacking News/Global Security News
An updated build for Acunetix WVS Version 6.5 has been released. It includes a number of bug fixes. Bug fixes: Fixed: Redirect on LoginSequenceStep was not followed correctly Fix in URL Rewrite module ...Tuesday, 27 October 2009 -
Bredolab masked as Facebook Password Reset Confirmation
Category: Network Security & Hacking News/Latest Security News
MX Lab detected a new Bredolab variant masking itself as the Facebook Password Reset Confirmation. The From address in the email is shown as The Facebook Team service@facebook.com but the real SMTP from ...Monday, 26 October 2009 -
Use Hotmail or Gmail? Be on alert for phishing scams
Category: Network Security & Hacking News/Latest Security News
Security experts are seeing an increase in spam in Hotmail, Gmail, and other Web mail accounts. Increasingly, the spam appears to be coming from people that the victims know. Researchers suspect that cybercriminals ...Monday, 26 October 2009
Site Search
Login Form
Sponsor Advertisements
 |