- Vuln: Mahara Resume Blocktype Cross Site Scripting Vulnerability
- Vuln: Mahara Admin Password Reset Security Bypass Vulnerability
- Vuln: eCryptfs 'parse_tag_3_packet()' Packet Heap Based Buffer Overflow Vulnerability
- Vuln: Cisco VPN Client for Windows 'StartServiceCtrlDispatche' Local Denial of Service Vulnerability
- Vuln: HP OpenView Network Node Manager 'ovdbrun.exe' Denial of Service Vulnerability
- Vuln: PHP Versions Prior to 5.3.1 Multiple Vulnerabilities
- Vuln: KDE KDELibs 'dtoa()' Remote Code Execution Vulnerability
- Vuln: PEAR Sendmail 'From' Parameter Arbitrary Argument Injection Vulnerability
- Vuln: IBM Rational Products Multiple Cross Site Scripting Vulnerabilities
- Vuln: Microsoft Internet Explorer 'Style' Object Remote Code Execution Vulnerability
Search
Search Result
-
Phishers Target Shaw Communications Customers
Category: Network Security & Hacking News/Latest Security News
Trend Micro threat analysts recently found a fake Shaw Communications phishing Web page http://nadaworld.net// that asks users for their customer care login name and password. Shaw Communications is one ...Sunday, 22 November 2009 -
Google Wave Invite Nominations
Category: Network Security & Hacking News/Latest Security News
This is what it looks like when you finally get to nominate folks to join Google Wave:I've had Wave since October 8, and I am just now able to nominate folks.Here's how it works. Leave a comment with your ...Saturday, 21 November 2009 -
Hackers steal confidential global warming data
Category: Network Security & Hacking News/Latest Security News
1,079 emails and 3,800 documents 1,079 emails and 3,800 documents Read Full ArticleSaturday, 21 November 2009 -
SecuraBit Episode 44 – Dennis Hurst and Movember!
Category: Network Security & Hacking News/Latest Security News
SecuraBit Episode 44 – Guest Interview: Dennis Hurst, Senior Application Security Architect at HP Software Solutions and a founding member of the Cloud Security Alliance Discussion of security and Agile ...Friday, 20 November 2009 -
“After Data Loss ID Theft Soars”….really?
Category: Network Security & Hacking News/Latest Security News
... the Dear John letters: “Dear Consumer. We’ve lost your personal information. It’s fallen off a truck/was on a laptop that was lost/was stolen by a hacker. We’re sorry and we promise ...Friday, 20 November 2009 -
Emails regarding updating your mailbox leads to the malware flashinstaller.exe
Category: Network Security & Hacking News/Latest Security News
MX Lab intercepts emails with an embedded URL that leads to a web site where you will have the notice You don't have the latest version of Macromedia Flash Player. and you can download the file flashinstaller.exe. ...Friday, 20 November 2009 -
Insiders at T-Mobile UK Sold Customer Information
Category: Network Security & Hacking News/Latest Security News
T-Mobile workers sold personal data on thousands of customers to third parties who then called the individuals as their wireless contracts were due to expire, a T-Mobile UK spokesman has confirmed. A few ...Friday, 20 November 2009 -
Curiosity as a Malicious PDF
Category: Network Security & Hacking News/Global Security News
What would you do if you saw in your inbox, an email with a PDF named, “U.S. ship thwarts second pirate attack November 18, 2009.pdf”? Would the title pique your curiosity? Hopefully not enough for you ...Friday, 20 November 2009 -
Denial-of-Service Attack Against CALEA
Category: Network Security & Hacking News/Latest Security News
Interesting: The researchers say they've found a vulnerability in U.S. law enforcement wiretaps, if only theoretical, that would allow a surveillance target to thwart the authorities by launching what ...Thursday, 19 November 2009 -
PHP “multipart/form-data” denial of service
Category: Network Security & Hacking News/Global Security News
PHP version 5.3.1 was just released. This release contains a patch for a denial of service condition we've reported some time ago. The problem is related with PHP's handling of RFC 1867 (Form-based File ...Thursday, 19 November 2009 -
Job Spam Uses Twitter
Category: Network Security & Hacking News/Latest Security News
TrendLabs researchers were alerted to the discovery of spammed messages that contained Twitter URLs. The spam uses subjects such as N3 Earn Extra Income! 7L, C2 Exrtra Income Daily 4P, and Q0 $$$ Oppurtunity ...Thursday, 19 November 2009 -
Smart grids drag utilities into the swamp of online privacy
Category: Network Security & Hacking News/Latest Security News
The smart grid is rapidly becoming a reality in the US, as utilities have been installing networked monitoring and control equipment, both in their own facilities and in their customers' homes. The pace ...Thursday, 19 November 2009 -
Update: bpmtk with hook-createprocess.dll
Category: Network Security & Hacking News/Latest Security News
There are no real changes in this new version of bpmtk, only a new DLL (hook-createprocess.dll) was added. You can use this DLL to protect your Windows machine from getting infected by the current malicious ...Thursday, 19 November 2009 -
JJ- Back in the lab: 802.1X and more
Category: Network Security & Hacking News/Latest Security News
Hi everyone! I know I've been missing in action yet again, so I thought I'd give you all a quick update. I've been on site quite a bit recently, working on various customer projects and security implementations. ...Thursday, 19 November 2009 -
UK Confused About Piracy
Category: Network Security & Hacking News/Latest Security News
... enforcement powers that allow them to compel ISPs, libraries, companies and schools to turn over personal information about Internet users, and to order those companies to disconnect users, remove websites, ...Thursday, 19 November 2009 -
T-Mobile Admits Employee Sold Private Data
Category: Network Security & Hacking News/Latest Security News
Greed can be a real bugger. From Reuters: A employee of mobile phone operator T-Mobile is facing prosecution after selling personal details of thousands of British customers to rival companies in an alleged ...Wednesday, 18 November 2009 -
Scareware Campaign Using Google Sponsored Links
Category: Network Security & Hacking News/Latest Security News
A scareware campaign is currently using Google sponsored ads, and by hijacking a decent number of well positioned keywords, is attempting to trick visitors into installing scareware featuring several new ...Wednesday, 18 November 2009 -
Cloud Security Front And Center
Category: Network Security & Hacking News/Latest Security News
Cloud computing is the latest trend that has the industry abuzz. Everywhere you go, there are cloud services for every functionality imaginable. Many believe that cloud computing can deliver massive business ...Wednesday, 18 November 2009 -
Bill would ban P2P use on federal networks, PCs
Category: Network Security & Hacking News/Latest Security News
... a policy that would extend to networks and computers operated by agency contractors, as well as to personal computers of federal employees remotely accessing federal networks. "We can no longer ignore ...Wednesday, 18 November 2009 -
A Simplified Astaro UTM now FREE to businesses
Category: Network Security & Hacking News/Latest Security News
... Astaro products, and personally I really hate UTMs, just like I do All-In-One Printer/Copier/Faxes. One thing breaks, they all do. However, Astaro’s .. before I go into my opinions of the product, ...Wednesday, 18 November 2009 -
Data-stealing malware soars
Category: Network Security & Hacking News/Latest Security News
From phony emails to Facebook phishers, cybercriminals are casting a wide net to lure online shoppers this season. According to new research from Webroot, certain infections designed to steal personal... ...Wednesday, 18 November 2009 -
Experts: Smart grid poses privacy risks
Category: Network Security & Hacking News/Latest Security News
... personal information detail available as well as the instances of collection, use and disclosure of personal information," ... Technologists already are worried about the security implications of linking ...Wednesday, 18 November 2009 -
Twitter accounts abused by spammers
Category: Network Security & Hacking News/Latest Security News
MX Lab detected a spam campaign where Twitter is being abused by spammers to promote online drug stores. The campaign is sent from random spoofed email addresses and has similar subjects like: 7U1 An amazing ...Tuesday, 17 November 2009 -
T-Mobile personal user data breached and sold
Category: Network Security & Hacking News/Latest Security News
T-Mobile UK got a nasty surprise when they realized that their customers whose contract was due to expire were being contacted by their competitors. They soon realized that someone at T-Mobile must... ...Tuesday, 17 November 2009 -
Payment Request Spam Contains Malware
Category: Network Security & Hacking News/Latest Security News
TrendLabs researchers received spammed messages purporting to have come from various companies such as eBay, J.P. Morgan Chase and Co., and Colgate-Palmolive, among others. The email bore the subject, ...Tuesday, 17 November 2009 -
Identity Fraud Latest Crime Trend in UK
Category: Network Security & Hacking News/Latest Security News
Identity theft in the UK is rising at an alarming rate. A study has shown that “60,000 cases of impersonation related to criminal activity have been reported in the 9 months to date of this year, a huge ...Tuesday, 17 November 2009 -
Protect Data or Get Fined
Category: Network Security & Hacking News/Global Security News
... teams are failing to take data protection seriously enough. Unacceptable amounts of data are being stolen, lost in transit or mislaid by staff. Far too much personal data is still being unnecessarily downloaded ...Tuesday, 17 November 2009 -
"Your mailbox has been deactivated" Spam Campaign Serving Crimeware
Category: Network Security & Hacking News/Latest Security News
An ongoing "Your mailbox has been deactivated" themed spam campaign is pushing crimeware as an attached utility.zip archive. Subject: your mailbox has been deactivated Message: "We are contacting you in ...Tuesday, 17 November 2009 -
FTC Delays Red Flags Enforcement Yet Again
Category: Network Security & Hacking News/Latest Security News
... are billed for services rendered,” said AICPA president and CEO Barry Melancon in a statement. “As trusted advisors, CPAs are personally acquainted with their clients and already adhere to ...Tuesday, 17 November 2009 -
New Sasfis trojan in the wild
Category: Network Security & Hacking News/Latest Security News
Between October 27 and November 09th, 2009, MX Lab has noticed a large amount of viruses. Bredolab, distributed by the Cutwail botnet, was responsible for the majority of viruses during this period. After ...Tuesday, 17 November 2009 -
Internet Archive backs short URL repository
Category: Network Security & Hacking News/Latest Security News
Some of the companies behind web address shortening services have joined together to created an archive of links so that the links continue to work if any of them go out of business. Some of the companies ...Tuesday, 17 November 2009 -
A Useful Side-Effect of Misplaced Fear
Category: Network Security & Hacking News/Latest Security News
... for personal safety. We suggest that the drink-spiking narrative has a functional appeal in relation to the contemporary experience of young women's public drinking. In an article on the study in The ...Monday, 16 November 2009 -
ICO investigating mobile firm over data leaks
Category: Network Security & Hacking News/Global Security News
Christopher Graham, the Information Commissioner, said that "blaggers and others" who trade in personal information should be aware that the ICO will act decisively when it is aware that the law has been ...Monday, 16 November 2009 -
Auditing 100,000 Hosts or More with Nessus
Category: Network Security & Hacking News/Latest Security News
Recently, the State Department Deputy CIO and CISO John Streufert participated in a podcast where he talked about moving past the Federal Information Security Management Act (FISMA) to a metrics based ...Monday, 16 November 2009 -
Keeping Money Mule Recruiters on a Short Leash
Category: Network Security & Hacking News/Latest Security News
The money mule recruitment syndicate exposed in a previous post (Standardizing the Money Mule Recruitment Process), continues introducing new domains and re-branding the de-facto recruitment templates ...Monday, 16 November 2009 -
Tenable Network Security Podcast - Episode 12
Category: Network Security & Hacking News/Latest Security News
Welcome to the Tenable Network Security Podcast - Episode 12 Announcements A new blog post has been released that covers my experiences scanning Windows 7 with the latest version of Nessus 4.2 (yet to ...Monday, 16 November 2009 -
Commission forms industry body to solve behavioural advertising problems
Category: Network Security & Hacking News/Latest Security News
The European Commission has formed a new group in an attempt to regulate companies' growing gathering and use of customers' personal data. The group has been formed to address problems the Commission says ...Monday, 16 November 2009 -
Secret Security Operation Accidentally Exposed
Category: Network Security & Hacking News/Latest Security News
Hackers are always trying to find flaws that they can exploit to get to your personal information. Therefore, the experts need to always be a step ahead when it comes to finding and identifying any weaknesses. ...Monday, 16 November 2009 -
Extending Security Event Correlation
Category: Network Security & Hacking News/Latest Security News
Last year at this time I wrote a series of posts on security event correlation. I offered the following definition in the final post: Security event correlation is the process of applying criteria to ...Monday, 16 November 2009 -
Cyber-Ark Expands Into Superuser Access Control Market
Category: Network Security & Hacking News/Latest Security News
When it comes to managing privileged identities, most enterprises have been forced to invest in separate solutions to manage the lifecycle and access-control policies across all shared and superuser accounts, ...Monday, 16 November 2009 -
Financial Executive Is Keynote Speaker for ISACA’s 2010 EuroCACS Conference in Budapest
Category: Network Security & Hacking News/Latest Security News
ISACA, the not-for profit IT security, governance and assurance association with more than 80,000 members worldwide, has revealed that the keynote speaker for its world-leading European Computer Audit, ...Monday, 16 November 2009 -
Malicious "Balance Checker Tool"
Category: Network Security & Hacking News/Latest Security News
TrendLabs warns about spam messages with the subject Your credit balance is over its limits professing to be from Vodafone and Verzon Wireless. The email states that the useraposs credit balance is ove... ...Monday, 16 November 2009 -
ISACA Warns Increase in Web Site Characters Could Lead to More Phishing Attacks
Category: Network Security & Hacking News/Latest Security News
... with non-Latin scripts. People might think they are on a trusted site, but inadvertently enter credit card numbers and other personal information on a fraudulent site.” Explains Wood, “Glyphs representing ...Monday, 16 November 2009 -
Public Reactions to Terrorist Threats
Category: Network Security & Hacking News/Latest Security News
... repeatedly reminded the public to keep eyes and ears open to help identify dangerous persons. A strategy of vigilance has also been endorsed by the new secretary of Homeland Security, Janet Napolitano. ...Sunday, 15 November 2009 -
Phishing attack targets financial clearing house
Category: Network Security & Hacking News/Global Security News
Andrew Brandt, writing on the WebRoot blog, said, "When the world's largest clearing house for transfers of funds between banks supposedly sends you an email like this one, you probably would perk up and ...Sunday, 15 November 2009 -
St Albans Council loses fourth laptop this month
Category: Network Security & Hacking News/Global Security News
... of security. However commentators have pointed out that if the two levels of security are not strong enough the personal data could be used for bank or credit card fraud. Chris McI... The laptop was ...Sunday, 15 November 2009 -
Bruce Schneier Action Figure
Category: Network Security & Hacking News/Latest Security News
... gift for your corporate IT person. So e-mail the company if you're interested, and if they get enough interest they'll do a bulk order. Read Full Article ...Sunday, 15 November 2009 -
Is this the laziest 419 of all time?
Category: Network Security & Hacking News/Latest Security News
Subject: the sum of 1,000,000.00 Pounds From: British Tobacco Promo Message Body: You have ...Saturday, 14 November 2009 -
Patch Tuesday - November 2009
Category: Network Security & Hacking News/Latest Security News
Another Tuesday, another round of security bulletins from Microsoft. Are you patched? Nessus contains credentialed local checks for all security bulletins, and a network-based uncredentialed check for ...Friday, 13 November 2009