- Vuln: Mahara Resume Blocktype Cross Site Scripting Vulnerability
- Vuln: Mahara Admin Password Reset Security Bypass Vulnerability
- Vuln: Google Chrome prior to 3.0.195.32 Multiple Security Vulnerabilities
- Vuln: Multiple Horde Products Cross-Site Scripting Vulnerabilities and File Overwrite Vulnerability
- Vuln: Mod_Perl Path_Info Remote Denial Of Service Vulnerability
- Vuln: Apache mod_perl 'Apache::Status' and 'Apache2::Status' Cross Site Scripting Vulnerability
- Vuln: FreeBSD 'fifo_vnops.c' Resource Leak Local Denial of Service Vulnerability
- Vuln: Citrix NetScaler and Access Gateway Denial Of Service Vulnerability
- Vuln: PDFLib 'open_basedir' Restriction Bypass Vulnerability
- Vuln: Multiple Vendor TLS Protocol Session Renegotiation Security Vulnerability
Search
Search Result
-
Lost+Found: Reinfection, LoroBot, Successes and Hoaxes
Category: Network Security & Hacking News/Latest Security News
Too short for news, too good to lose; lost+found is a round up of useful security information. Today, Reinfection, LoroBot, Successes and Hoaxes Too short for news, too good to lose; lost+found is a ...Wednesday, 04 November 2009 -
The missing letter that links Fake AV and Extreme Porn
Category: Network Security & Hacking News/Global Security News
... recent tsunami spam spreading more Fake Alert malware given the domain overlap below with this detailed VIL’s hosts-file infection data http://vil.nai.com/vil/content/v_162829.htm Lastly lets take ...Tuesday, 03 November 2009 -
The return of the worm
Category: Network Security & Hacking News/Latest Security News
According to Microsoft's Security Intelligence Report 2009, phishing and worm infections both rose in the first half of 2009. Enterprise environments appear to be particularly susceptible to worms According ...Tuesday, 03 November 2009 -
Microsoft report says more worms, vista better, file formats security
Category: Network Security & Hacking News/Latest Security News
Microsoft has released their latest Security Intelligence Report (SIR). Some of the Top Highlights of the report are : Large increase in Worm Infection. Vista was less compromised than Windows XP machines. ...Monday, 02 November 2009 -
Pricing Scheme for a DDoS Extortion Attack
Category: Network Security & Hacking News/Latest Security News
... recruitment process, diversifying the standardized and well proven propagation/infection vectors etc.) offered by a botnet. What if their DDoS for hire business model is experiencing a decline? Would ...Monday, 02 November 2009 -
Summarizing Zero Day's Posts for October
Category: Network Security & Hacking News/Latest Security News
... articles include: Does software piracy lead to higher malware infection rates? and New LoroBot ransomware encrypts files, demands $100 for decryption. 01. MS Security Essentials test shows 98% detection ...Monday, 02 November 2009 -
What Windows Autorun Has Wrought
Category: Network Security & Hacking News/Latest Security News
... emerged nearly a year ago, and initially it spread by exploiting a networking vulnerability in Windows. But Conficker infections soared by the millions in January with the arrival of Conficker B, which ...Monday, 02 November 2009 -
Global security best practices
Category: Network Security & Hacking News/Latest Security News
The latest Microsoft Security Intelligence Report shares security best practices from countries that have consistently exhibited low malware infection. These best practices and security intelligence p... ...Monday, 02 November 2009 -
Worm infections in the enterprise rose by nearly 100%
Category: Network Security & Hacking News/Latest Security News
The latest Microsoft Security Intelligence Report (SIRv7), which indicates that worm infections in the enterprise rose by nearly 100 percent during the first half of 2009 over the preceding six months... ...Monday, 02 November 2009 -
BREDOLAB Revealed!
Category: Network Security & Hacking News/Latest Security News
When BREDOLAB entered the threat landscape several months ago, it was initially thought of as a common downloader (that downloads executable files) designed for malware infection only. However, Trend Micro ...Monday, 02 November 2009 -
Microsoft releases latest findings on malware
Category: Network Security & Hacking News/Latest Security News
... · Worm infections are growing. · Rogue security software continues to be a major threat. This map ... Microsoft released the newest Security Intelligence Report, which focuses on trends in malicious ...Sunday, 01 November 2009 -
Rogue AV Haunts This Halloween
Category: Network Security & Hacking News/Global Security News
... a fake “Windows Security Alert” window that is identical to the scam reported by Avelino Rico Jr in his blog. It warns the user of fake infections and requires the user to download a tool to ...Sunday, 01 November 2009 -
Email regarding Facebook account update is a phish – part 2
Category: Network Security & Hacking News/Latest Security News
... %System%\svchost.exe, %System%\alg.exe adn %ProgramFiles%\internet explorer\iexplore.exe. Windows registry modification are also part of the infection and a connection to a remote host will be established: ...Saturday, 31 October 2009 -
Cutwail trojan variant out in the wild
Category: Network Security & Hacking News/Latest Security News
... page created in the address space of the system process(es) %System%\svchost.exe. Several Windows registry modifications ae also part of the infection. The trojan will try to establish a connection with ...Friday, 30 October 2009 -
SanDisk Cruzer Enterprise Flash Drives Earn Certification
Category: Network Security & Hacking News/Latest Security News
... anti-malware scan that prohibits file transfers to the secure USB drive when it detects infection on a host PC. For greater control and security, agency or company-issued Cruzer Enterprise secure USB ...Friday, 30 October 2009 -
Best of Application Security (Friday, Oct. 30)
Category: Network Security & Hacking News/Latest Security News
... Infection Library Infrastructure fingerprinting via XSS DNS Rebinding in Firefox Output Validation using the OWASP ESAPI Google Wave as a Tool for Hacking Announcing the release of the Enhanced Mitigation ...Friday, 30 October 2009 -
Toata Scanning for Zen Shopping Cart with Brain File
Category: Network Security & Hacking News/Latest Security News
If you've been a long time reader of this blog, then you know about our ongoing efforts to help stem the tide of web application infections. Here is another example of this effort in action. A couple of ...Tuesday, 27 October 2009 -
Mac Screensaver
Category: Network Security & Hacking News/Latest Security News
Team Cymru launched a Mac OS X screensaver that displays a global infection map on a rotating globe, together with a RSS and Twitter Feed. http://www.team-cymru.org/News/Screensaver/ Team Cymru launched ...Monday, 26 October 2009 -
Zipped Trojan in email attachment leads to further infection
Category: Network Security & Hacking News/Latest Security News
Here is the proof you should never open attachments from anyone you donapost know or donapost trust: TrendLabs discovered spam emails professing to be from LSM Company, regarding a Contract of Settlements... ...Monday, 26 October 2009 -
McAfee Labs goes after EvilMaid!
Category: Network Security & Hacking News/Global Security News
... user. Obviously an AV cannot prevent an Evil maid attack, but alerting a user on the first reboot after such an infection can go a long way in preventing the data loss. We now detect this proof-of-concept ...Monday, 26 October 2009 -
Windows 7? No Problem for Trend Micro Users
Category: Network Security & Hacking News/Latest Security News
... are fewer network vulnerabilities every time. Having said that though, security cannot be taken for granted and there’s always room for improvement. The Web is today the biggest infection vector therefore ...Thursday, 22 October 2009 -
Best Practices for Verifying and Cleaning up a Compromised Site
Category: Network Security & Hacking News/Global Security News
... Be sure to identify and address the underlying vulnerability that led to the compromise, or else reinfection is likely to occur. Remember to Check Your Web Server Configuration In addition to checking ...Thursday, 22 October 2009 -
FAKEAV Uses Conficker Worm as Bait
Category: Network Security & Hacking News/Latest Security News
... recipient to download and install the attached .zip file (shown in Figure 2) which is actually a malicious file which purports to scan their computer of possible Conficker worm infection. Noticeable to ...Wednesday, 21 October 2009 -
Koobface Botnet Redirects Facebook's IP Space to my Blog
Category: Network Security & Hacking News/Latest Security News
... order for their infections to take place. Stay tuned for more developments on the Ali Baba and the 40 thieves LLC front, a.k.a as my Ukrainian "fan club". The circle is almost complete, a lot of recent ...Wednesday, 21 October 2009 -
Scareware Serving Conficker.B Infection Alerts Spam Campaign
Category: Network Security & Hacking News/Latest Security News
A fake "conficker.b infection alert" spam campaign first observed in April, 2009 (using the following scareware domains antivirus-av-ms-check .com; antivirus-av-ms-checker .com; ms-anti-vir-scan .com; ...Tuesday, 20 October 2009 -
FakeRean masked in email from Microsoft
Category: Network Security & Hacking News/Latest Security News
MX Lab intercepted some messages with the subject line Conflicker.B Infection Alert coming from Microsoft Windows Agent but with a spoofed from address. The virus is known as Trojan-Downloader:W32/Fakerean.AG ...Tuesday, 20 October 2009 -
Fake 'Conflicker.B Infection Alert' spam campaign drops scareware
Category: Network Security & Hacking News/Latest Security News
An ongoing spam campaign is once again attempting to impersonate Microsoft's security team the same campaign was first seen in April by mass mailing Conflicker.B Infection Alerts (install.zip), which upon ...Monday, 19 October 2009 -
'Evil Maid' USB stick attack keylogs TrueCrypt passphrases
Category: Network Security & Hacking News/Latest Security News
... the hard drive's content. Dubbed, the evil maid' attack due to its plug-and-exploit' functionality requiring 1-2 minutes for the infection process to the take place, works with Security researcher ...Monday, 19 October 2009 -
Protecting Users and Ads from Malware
Category: Network Security & Hacking News/Global Security News
... ad creatives. Protect your own computer and website from infection. Be aware that various ad networks and exchanges may have significantly different standards for the prevention and detection of malware. ...Friday, 16 October 2009 -
Does software piracy lead to higher malware infection rates?
Category: Network Security & Hacking News/Latest Security News
... infection rates, using public sources. The rationale behind their claims is fairly simple - users relying on pirated copies of software also do not Yes it does, at least according to a recently ...Wednesday, 14 October 2009 -
Small Botnets Are More Dangerous in Enterprises
Category: Network Security & Hacking News/Latest Security News
According to a 3-month study of 600 botnets which have infiltrated enterprise networks, bot infections are on the rise in the corporate environment. The research, done by Damballa, indicates that it is ...Tuesday, 13 October 2009 -
Conficker needs application control
Category: Network Security & Hacking News/Global Security News
Latest reports on conficker infections include not only Ealing Council (see previous post) but also Oxford Brookes University, Manchester City Council and Whipps Cross University Hospital NHS Trust. Prior ...Tuesday, 13 October 2009 -
Avoid Windows Malware: Bank on a Live CD
Category: Network Security & Hacking News/Latest Security News
... I explain an easy-to-use alternative). But I have interviewed dozens of victim companies that lost anywhere from $10,000 to $500,000 dollars because of a single malware infection. I have heard stories ...Monday, 12 October 2009 -
US ISP provider Comcast warns customers of virus infections
Category: Network Security & Hacking News/Latest Security News
Comcast, one of the major US internet service providers, is introducing the "Constant Guard" security program designed to detect whether a computer is compromised by viruses or bots Comcast, one of the ...Sunday, 11 October 2009 -
Weekly Intelligence Summary: 2009-10-09
Category: Network Security & Hacking News/Latest Security News
... they were probably the result of malcode infections and not phishing. The scale of this infection/breach is more significant to enterprise security than the web e-mail accounts that were compromised. ...Friday, 09 October 2009 -
The Malware Warning Review Process
Category: Network Security & Hacking News/Global Security News
... site cleanup. The webmaster should remove all harmful content from the site. We realize that it can be tricky to find all the infections on a website, and webmasters should look thoroughly if the warning ...Friday, 09 October 2009 -
Web Security - The Problem
Category: Network Security & Hacking News/Latest Security News
... site be rechecked after the virus is clean? Viruses are showing up on otherwise legitimate sites. Sites can be compromised through lack of patching, through SQL Infection. In several cases advertising ...Thursday, 08 October 2009 -
Hot Hot HotMail!
Category: Network Security & Hacking News/Latest Security News
... not only home ones but also computers used for public access (e.g. Internet Café, University Campus, etc.). The size of the list definitely agrees with this type of attack (infection figures are estimated ...Wednesday, 07 October 2009 -
Mobile Security Threats and Prevention
Category: Network Security & Hacking Articles/Legacy Security Articles
... through the mobile equivalent of a popup, either by vibrating or sending an audible ring to our Bluetooth ear piece. As users begin to explore more of the mobile web the opportunities for infection will ...Saturday, 03 October 2009 -
Corporate Spyware Fight
Category: Network Security & Hacking Articles/Legacy Security Articles
... threats to personal and business internet uses. Employees have become active on the internet, leaving the enterprise's computer network vulnerable to spyware infection. For businesses spyware infection ...Saturday, 03 October 2009 -
Anonymous remailers are a virus spreading online!
Category: Network Security & Hacking Articles/Legacy Security Articles
... travel or exposure to sources of infection. The best one can do is to start treating the pathologies inherent in the Internet in the same way as we have learned to deal with infectious epidemics. That ...Saturday, 03 October 2009 -
Win98.BlackBat
Category: Network Security & Hacking Articles/Legacy Security Articles
... infection ;* Encrypted with a random key ;* Doesn't infect anti-virus files, NAV, TBAV, SCAN, CLEAN, F-PROT ;* Anti-Debugging Code ;* Structured Exception Handling ;* Decryption engine is Polymorphic ...Saturday, 03 October 2009 -
General Hacking Attack Descriptions
Category: Network Security & Hacking Articles/Legacy Security Articles
... about 60,000 computers, and a good many of them found themselves under attack. Even those not affected by the Worm still had to be checked and rechecked to be sure they were safe from infection. Estimates ...Saturday, 03 October 2009 -
Preventing Malicious Documents from Compromising Windows Machines
Category: Network Security & Hacking News/Latest Security News
... execute the downloaded executable This infection method only works if the user is local admin. If the exploited program has no rights to write to SYSTEM32, Almost all shellcode I see in malicious ...Sunday, 27 September 2009 -
GSO Rules & Regulations
Category: 'Uncategorised Content'
... the forum, However we greatly encourage the conversations regarding disinfection, the newest methods of scanning and prevention, virus signatures and output data files and the likewise to a more white ...Sunday, 04 October 2009
Site Search
Login Form
Sponsor Advertisements
 |