- Vuln: Mahara Resume Blocktype Cross Site Scripting Vulnerability
- Vuln: Mahara Admin Password Reset Security Bypass Vulnerability
- Vuln: eCryptfs 'parse_tag_3_packet()' Packet Heap Based Buffer Overflow Vulnerability
- Vuln: Cisco VPN Client for Windows 'StartServiceCtrlDispatche' Local Denial of Service Vulnerability
- Vuln: HP OpenView Network Node Manager 'ovdbrun.exe' Denial of Service Vulnerability
- Vuln: PHP Versions Prior to 5.3.1 Multiple Vulnerabilities
- Vuln: KDE KDELibs 'dtoa()' Remote Code Execution Vulnerability
- Vuln: PEAR Sendmail 'From' Parameter Arbitrary Argument Injection Vulnerability
- Vuln: IBM Rational Products Multiple Cross Site Scripting Vulnerabilities
- Vuln: Microsoft Internet Explorer 'Style' Object Remote Code Execution Vulnerability
Search
Search Result
-
Interesting Information Security Bits for 11/20/2009
Category: Network Security & Hacking News/Latest Security News
... ) This is a must read in my opinion. I have only read the executive summary and skimmed the assurance framework part so far, but they alone are worth the price of admission. I look forward to digging ...Friday, 20 November 2009 -
Weekly Intelligence Summary: 2009 – 11 – 20
Category: Network Security & Hacking News/Latest Security News
Availability failures dominate risk developments this week. The regional blackout in Brazil at the end of last week’s report occurred on Tuesday, 9 November. First reports pointed to a thunderstorm, ...Friday, 20 November 2009 -
Swine Flu Mutation Concerns Norwegian Scientists
Category: Network Security & Hacking News/Global Security News
As with the story yesterday from the Ukraine, this is something to keep an eye on. The primary concern over Swine Flu is it's potential to mutate into a much more serious disease. Scientists in Norway ...Friday, 20 November 2009 -
Increase in Gumblar backdoors poses FTP credential problems
Category: Network Security & Hacking News/Latest Security News
Security Researcher explains how to detect the Trojan, but many victimized website owners don’t have the technical expertise to fix the problem. Mary Landesman, a senior security researcher at security ...Friday, 20 November 2009 -
Identity Management in 13 Easy Steps
Category: Network Security & Hacking News/Latest Security News
... those IDs have to be clean. The first cleanup is focused on the primary IDs such as AD/LDAP and other key systems. March 2010: Data Cleanup Part 2 – a key benefit of identity management is the ability ...Thursday, 19 November 2009 -
How Smart are Islamic Terrorists?
Category: Network Security & Hacking News/Latest Security News
Organizational Learning and Islamic Militancy (May 2009) was written by Michael Kenney for the U.S. Department of Justice. It's long: 146 pages. From the executive summary: Organizational Learning and ...Wednesday, 18 November 2009 -
Security study exposes enemy within
Category: Network Security & Hacking News/Global Security News
... by insiders now rivals virus and malware intrusions as the primary cause of data breaches. Some 84 per cent reported suffering a virus or malware network intrusion in the past 12 months.... Six out of ...Tuesday, 17 November 2009 -
Gumblar botnet on the march again
Category: Network Security & Hacking News/Global Security News
"Gumblar is arguably one of the most insidious threats facing web surfers and web site operators today," said Mary Landesman, senior security researcher at ScanSafe. "Disturbingly, in early November, we ...Tuesday, 17 November 2009 -
Public Reactions to Terrorist Threats
Category: Network Security & Hacking News/Latest Security News
... the primary determinant in their voting decision. These findings did not just occur among Republicans, but also among Independents and Democrats. All partisan groups who perceived Bush as more charismatic ...Sunday, 15 November 2009 -
Weekly Intelligence Summary: 2009 – 11 – 13
Category: Network Security & Hacking News/Latest Security News
The most significant impact on risk over the last week was November's Microsoft Tuesday security bulletins, and most developments this week had a positive impact on risk. Kerfuffles over another SMB issue ...Friday, 13 November 2009 -
Best of Application Security (Friday, Nov. 13)
Category: Network Security & Hacking News/Latest Security News
... Assessment Q4 2009 (EMA Radar Report™ Summary) Facebook groups hacked through design flaw Microsoft Tries To Censor Bing Vulnerability WhiteHat Security is a leading provider of website security services. ...Friday, 13 November 2009 -
OWASP Top 10 (2010 release candidate 1)
Category: Network Security & Hacking News/Latest Security News
... whether you have this problem, how to avoid this problem, some example flaws in that area, and pointers to links with more information. The primary aim of the OWASP Top 10 is to educate developers, ...Friday, 13 November 2009 -
Beyond Security Theater
Category: Network Security & Hacking News/Latest Security News
... using victims as a prop. By refusing to be terrorized, we deny the terrorists their primary weapon: our own fear. Today, we can project indomitability by rolling back all the fear-based post-9/11 security ...Thursday, 12 November 2009 -
John Allen Muhammad, Beltway Sniper Executed
Category: Network Security & Hacking News/Global Security News
John Allen Muhammad has been executed in Virginia for his part in a three-week killing spree in Virginia, Maryland and Washington, D.C. in 2002. A final appeal for a reprieve was denied hours before the ...Tuesday, 10 November 2009 -
Weekly Intelligence Summary: 2009 – 11 – 06
Category: Network Security & Hacking News/Latest Security News
... but none are presently the target of attack. Historically, Java vulnerabilities are ignored by criminals or attacked months after patching. Social networks continue to be a primary target of criminal activity. ...Monday, 09 November 2009 -
Ron Gula and Marcus Ranum DOJOCON 2009 Videos
Category: Network Security & Hacking News/Latest Security News
I had the chance to see some really good speakers this past weekend at the DOJOCON conference here in Maryland. I also had the opportunity to speak about many different things we can do as users of information ...Monday, 09 November 2009 -
Wired: Maryland Voters Test New Cryptographic Voting System
Category: Network Security & Hacking News/Latest Security News
Wired: Maryland Voters Test New Cryptographic Voting System Wired: Maryland Voters Test New Cryptographic Voting System Read Full Article ...Wednesday, 04 November 2009 -
Wired: Maryland Voters Test New Cryptographic Voting System
Category: Network Security & Hacking News/Latest Security News
Wired: Maryland Voters Test New Cryptographic Voting System Wired: Maryland Voters Test New Cryptographic Voting System Read Full Article ...Wednesday, 04 November 2009 -
Vuln: Xerox Fiery WebTools 'summary.php' SQL Injection Vulnerability
Category: Network Security & Hacking News/Security Exploits and Security Patches
Xerox Fiery WebTools 'summary.php' SQL Injection Vulnerability Read Full Article ...Monday, 02 November 2009 -
Summarizing Zero Day's Posts for October
Category: Network Security & Hacking News/Latest Security News
The following is a brief summary of all of my posts at ZDNet's Zero Day for October. You can also go through previous summaries, as well as subscribe to my personal RSS feed or Zero Day's main feed. Notable ...Monday, 02 November 2009 -
Weekly Intelligence Summary: 2009 – 10 – 30
Category: Network Security & Hacking News/Latest Security News
... with the primary goal of stealing bank account information. Sun issued advance notification to patch at least six vulnerabilities in Java on Tuesday, 2009-11-03. There is also an Most of the threat ...Monday, 02 November 2009 -
Finjan says controlled access Web portals now prime target of cybercriminals
Category: Network Security & Hacking News/Latest Security News
... top Web sites have been - and continue to be - targeted by cybercriminals, those sites that store identity information will continue to a primary target, especially now that criminal hackers are being ...Friday, 30 October 2009 -
CubeCart 4 session management bypass leads to administrator access
Category: Network Security & Hacking News/Global Security News
... decimal(30,2), `remainder` decimal(30,2) DEFAULT '0.00' NOT NULL, `notes` text, PRIMARY KEY (`id`), KEY `customer_id` (`customer_id`) ) ENGINE MyISAM DEFAULT CHARSET=utf8 AUTO_INCREMENT=1 COLLATE=utf8_unicode_ci ...Thursday, 29 October 2009 -
Security Checks Friday for MARC Commuter Train Stations
Category: Network Security & Hacking News/Global Security News
If you commute using Maryland's MARC commuter trains, you'll notice increased security on Friday. The Maryland Transit Administration Police will launch a program of random security checks at MARC commuter ...Tuesday, 27 October 2009 -
Bob Blakley Gets Future Shock Dead Wrong
Category: Network Security & Hacking News/Latest Security News
... really, listen to Alessandro Acquisti, or read the summary of "Online Data Present a Privacy Minefield" on All Things Considered. In a world in which cheesy-looking web sites get more data, I'm not sure ...Tuesday, 27 October 2009 -
Ed Skoudis's COINS event in NYC: The Bad Guys are Winning: So Now What?
Category: Network Security & Hacking News/Latest Security News
... addition to the generalist vs. specialist-discussion, Skoudis covered some more topics. For me, it was interesting to finally meet the primary author of the material that I teach as a SANS mentor. ...Saturday, 24 October 2009 -
Weekly Intelligence Summary: 2009 – 10-23
Category: Network Security & Hacking News/Latest Security News
The following is the executive summary paragraph to the weekly Intelligence Summary report Verizon Business Cybertrust Security’s Risk Team provides. The purpose is to capture in one paragraph the most ...Friday, 23 October 2009 -
New Features At National Terror Alert – Poll
Category: Network Security & Hacking News/Global Security News
The primary goal of the National Terror Alert website has been to promote homeland security and emergency preparedness through awareness, education, community involvement and partnerships between individuals, ...Monday, 19 October 2009 -
“Mafia-style” cybercrime organizations
Category: Network Security & Hacking News/Global Security News
... Maryland approved the FTC’s request to call a halt to the companies’ activities and freeze the assets of those behind the scams. With more than 600 employees in real offices, subsidiaries ...Monday, 19 October 2009 -
Weekly Intelligence Summary: 2009 – 10-16
Category: Network Security & Hacking News/Latest Security News
The following is the executive summary paragraph to the weekly Intelligence Summary report Verizon Business Cybertrust Security’s Risk Team provides. The purpose is to capture in one paragraph the most ...Friday, 16 October 2009 -
Summary Window
Category: Network Security & Hacking News/Latest Security News
Read Full ArticleMonday, 12 October 2009 -
Sphere of Influence 2.1 - upcoming release
Category: Network Security & Hacking News/Latest Security News
Im just about to launch 2.1 version of Sphere Of Influence. I have added a summary page. Here I took a typical 800X600 window and made each pixel represent appx 164 ports. I wanted to visualize the entire ...Monday, 12 October 2009 -
Weekly Intelligence Summary: 2009-10-09
Category: Network Security & Hacking News/Latest Security News
The following is the executive summary paragraph to the weekly Intelligence Summary report Verizon Business Cybertrust Security's Risk Team provides. The purpose is to capture in one paragraph the most ...Friday, 09 October 2009 -
Tenable Network Security Podcast - Episode 6
Category: Network Security & Hacking News/Latest Security News
... the primary product you work on here at Tenable? What does PVS do? Can you also give us some of the history behind it? How are the plugins structured? Are the easy to write? Can the end user look at ...Tuesday, 06 October 2009 -
Visa releases End to End Best Practices! Big Kudos!!
Category: Network Security & Hacking News/Latest Security News
... end (or point to point) encryption solutions. This marks a watershed moment in our industry. Finally a major card brand is acknowledging the value of encryption. Here is a summary… 1) Limit cleartext ...Tuesday, 06 October 2009 -
SecuraBit Episode 41 – Speaking of Cons, and forensics…
Category: Network Security & Hacking News/Latest Security News
SecuraBit Episode 41 Speaking of Cons, and forensics Part 1: Marcus Carey Dojocon http://www.dojocon.org/ @dojocon November 6 7, 2009 Capitol College Maryland Part 2: Scott Moulton http://www.microforensics.com/pages/software-mercury.php ...Tuesday, 06 October 2009 -
OpenSolaris Security Summit open for registration
Category: Network Security & Hacking News/Latest Security News
The OpenSolaris Security Summit will be held on Tuesday November 3rd, 2009 in Baltimore, Maryland. It is scheduled to run during the 23rd Large Installation System Administration Conference (LISA apos09)... ...Monday, 05 October 2009 -
When And How To Outsource IT
Category: Network Security & Hacking Articles/Legacy Security Articles
... industry call the "sunk cost" problem, as that loss will not be regained once you've sunk your initial investment into it. "In summary," says Elmowy, "in a highly technical global economy, where there ...Saturday, 03 October 2009 -
The Basics of Computer Network Security
Category: Network Security & Hacking Articles/Legacy Security Articles
... stole account information for over 10,000 users. Gozi's primary function was to steal credentials being sent over SSL connections before they were encrypted and add them to a database server that would ...Saturday, 03 October 2009 -
Phishing: The Most Dangerous Form of Spam - Learn How to Protect Yourself from Security Threats
Category: Network Security & Hacking Articles/Legacy Security Articles
... your bank, and log into your account in the customary way using the usual url, such as https://www.paypal.com rather than with the url in the suspectt email. When you get into your account you will probably ...Saturday, 03 October 2009 -
General Hacking Attack Descriptions
Category: Network Security & Hacking Articles/Legacy Security Articles
... programs (such as the "Orange Book"), and a complete glossary and resource summary. Computer Crime: A Crimefighter s Handbook, by David Icove, Karl Seger, and William VonStorch, is aimed particularly ...Saturday, 03 October 2009 -
Linksys Router Information (A collection)
Category: Network Security & Hacking Articles/Legacy Security Articles
If this not work you can test the connection with tftp or maybe you must have an administrator tool for this cablemodem. I really don't know this software. Jun, 11 2002 Summary Linksys Cable/DSL ...Saturday, 03 October 2009 -
An Overview of Cryptography
Category: Network Security & Hacking Articles/Legacy Security Articles
... of any application-to-application communication, there are some specific security requirements, including: Authentication: The process of proving one's identity. (The primary forms of host-to-host authentication ...Saturday, 03 October 2009 -
SQL Injection: Modes of Attack, Defence, and Why It Matters
Category: Network Security & Hacking Articles/Legacy Security Articles
... mark error. This is a little unusual as normally an integer would not be quoted in an SQL statement. Another example better illustrates the use of a quote: Imagine a summary page that lists poets by ...Saturday, 03 October 2009 -
Windows NT Registry Tutorial
Category: Network Security & Hacking Articles/Legacy Security Articles
... anyways) and you will get into the system. With NT, you can have a network from anywhere from 20-20,000 users or so on the same domain. Each Domain will have a Primary Domain Controller (PDC) and a few ...Saturday, 03 October 2009 -
Database Security
Category: Network Security & Hacking Articles/Legacy Security Articles
... describes the primary areas where security falls within the domain of the DBA, who must create the information solutions. New security procedures and technology are pioneered daily, and this article ...Saturday, 03 October 2009 -
Domain Name Robbery
Category: Network Security & Hacking Articles/Legacy Security Articles
... using our Service Agreement. You can change the registrant's address, replace a contact/agent with a different contact/agent, or change primary and/or secondary name server information. To update ...Saturday, 03 October 2009 -
Search Indexing Robots Security
Category: Network Security & Hacking Articles/Legacy Security Articles
... SearchTools Site: Robots Information Page Summary of the most important things about web crawling robots META Robots Tag Page Describes the META Robots tag contents and implications for search indexing ...Saturday, 03 October 2009
