- Vuln: Mahara Resume Blocktype Cross Site Scripting Vulnerability
- Vuln: Mahara Admin Password Reset Security Bypass Vulnerability
- Vuln: Google Chrome prior to 3.0.195.32 Multiple Security Vulnerabilities
- Vuln: Multiple Horde Products Cross-Site Scripting Vulnerabilities and File Overwrite Vulnerability
- Vuln: Mod_Perl Path_Info Remote Denial Of Service Vulnerability
- Vuln: Apache mod_perl 'Apache::Status' and 'Apache2::Status' Cross Site Scripting Vulnerability
- Vuln: FreeBSD 'fifo_vnops.c' Resource Leak Local Denial of Service Vulnerability
- Vuln: Citrix NetScaler and Access Gateway Denial Of Service Vulnerability
- Vuln: PDFLib 'open_basedir' Restriction Bypass Vulnerability
- Vuln: Multiple Vendor TLS Protocol Session Renegotiation Security Vulnerability
Search
Search Result
-
DiabloNova's blog: 021: RkU update for Windows 2000
Category: Network Security & Hacking News/Latest Security News
This small update addressing issue with Windows 2000 reported in October 2009. Also this build contains some unblocked code from original 3.7 version on which codebase was created this variant. Hope... ...Saturday, 07 November 2009 -
Facebook updated account agreement email contains Sasfis trojan
Category: Network Security & Hacking News/Latest Security News
Apparently, the virus campaigns are far from over. MX Lab reported on this blog regarding the latest virus campaign that would be an attempt to grow the Cutwail botnet by infecting new computer systems ...Friday, 06 November 2009 -
Security 2009 report
Category: Network Security & Hacking News/Latest Security News
... of an individual, it is very easy and quick to determine if the one typing is the right person. So for identification purposes, his research is truly promising. Security_2009 I'd like to ...Friday, 06 November 2009 -
Fragus exploit pack’s pricy business model locks users in
Category: Network Security & Hacking News/Latest Security News
... is a big – real big – money maker for cybercriminals. A person willing to give up $800 is willing to accept a lot of risk and much like the stock market, the more risk you take on, the bigger the rewards. ...Friday, 06 November 2009 -
Google closes vulnerabilities in Chrome 3
Category: Network Security & Hacking News/Latest Security News
Google has released version 3.0.195.32 of Chrome, a security update that addresses a high risk vulnerability in its WebKit-based browser Google has released version 3.0.195.32 of Chrome, a security update ...Thursday, 05 November 2009 -
Bredolab surges to new heights thanks to Cutwail botnet
Category: Network Security & Hacking News/Latest Security News
Several sources reported a surge of the Bredolab trojan in the middle of October but MX Lab did noticed an real increase on October 27th. The following graph shows the virus detection from October 7th ...Thursday, 05 November 2009 -
Cutwail variant in UPS Delivery Problem email
Category: Network Security & Hacking News/Latest Security News
In the ongoing virus story, MX Lab intercepts a new variant of the Cutwail trojan masked in emails from UPS regarding a delivery problem with the subject: UPS Delivery Problem. The content of the email: ...Thursday, 05 November 2009 -
Western Union money transfer email contains new variant of Bredolab
Category: Network Security & Hacking News/Latest Security News
MX Lab intercepts a new trojan W32/Bredolab!Generic variant attached in emails from Western Union with the instructions on how to receive the money transfer. Possible subjects: Western Union transfer is ...Thursday, 05 November 2009 -
Flock 2.5.5 addresses security issues
Category: Network Security & Hacking News/Latest Security News
The Flock developers have released version 2.5.5 of their social web browser based on Firefox 3, addressing several security issues in its browser core and included components The Flock developers have ...Thursday, 05 November 2009 -
FTC Says Bloggers Must Disclose Freebies
Category: Network Security & Hacking News/Latest Security News
... Acme Co. And all I got in exchange was a free widget.” The good standby, “Paid Product Review,” should work fine (if you have no personality). Be Conspicuous: If you choose to take the ...Wednesday, 04 November 2009 -
Peer-to-Peer Goes Both Ways
Category: Network Security & Hacking News/Global Security News
We all know the dangers of peer-to-peer (P2P) networks and their role in distributing malware. Most people who deal with this problem work tirelessly to limit the impact of these potential threat points ...Wednesday, 04 November 2009 -
Is it phish, or is it Amex?
Category: Network Security & Hacking News/Latest Security News
I am a bit freaked. Last month I received an email message from American Express. I very nearly deleted it unread: it was obviously phish, right? (I was teaching in Toronto that week, so I had even more ...Wednesday, 04 November 2009 -
Adobe patches critical vulnerabilities in Shockwave Player
Category: Network Security & Hacking News/Latest Security News
Adobe has released an update to its Shockwave Player to address five critical vulnerabilities, four of which could allow an attacker to inject and execute malicious code on affected systems Adobe has ...Tuesday, 03 November 2009 -
st0rke
Category: Network Security & Hacking News/Latest Security News
I just read the sad news that st0rke, also known as the maintainer and founder of milw0rm has passed away, the problem with this news item is that it very difficult to judge whether or not it is true, ...Tuesday, 03 November 2009 -
Smoking (Cloud) Crack
Category: Network Security & Hacking News/Latest Security News
... If you don't have the secret key, your options for recovering the encrypted content are mathematically tantamount to nil. If you do have someone's secret key file, that person did something very wrong ...Tuesday, 03 November 2009 -
Interesting Information Security Bits for 11/03/2009
Category: Network Security & Hacking News/Latest Security News
Good afternoon everybody! I hope your day is going well. Here are today's Interesting Information Security Bits from around the web. A few days ago I pointed out an article that discussed some issues with ...Tuesday, 03 November 2009 -
Tis the Season for Christmas Spam! Fa La La La La…
Category: Network Security & Hacking News/Global Security News
It didn't take long for spammers to change from Halloween lures to spam and malware. They've already moved to the Christmas season, and we have started to see emails from the Cutwail botnet that are using ...Tuesday, 03 November 2009 -
Facebook Phishing Campaign Pushes ‘Cocktail’ Attack
Category: Network Security & Hacking News/Global Security News
We have already discussed the Facebook phishing campaign. Now the scammers are using the phishing campaign not just for spamming but also for a cocktail attack. The scammers have targeted Facebook, telling ...Tuesday, 03 November 2009 -
Vuln: Roundcube Webmail Background Attributes Email Message HTML Injection Vulnerability
Category: Network Security & Hacking News/Security Exploits and Security Patches
Roundcube Webmail Background Attributes Email Message HTML Injection Vulnerability Read Full ArticleTuesday, 03 November 2009 -
Fundamental Failures With Incident Response Plans
Category: Network Security & Hacking News/Latest Security News
... a data breach. Security folks have an innate desire to learn what happened to others so they can prevent encountering the same fate -- or so they say. However, after personally investigating hundreds of ...Tuesday, 03 November 2009 -
What information security might look like in a decade
Category: Network Security & Hacking News/Latest Security News
Esther Dyson, a former chair of the Electronic Frontier Foundation and the ICANN, and a long-time successful investor in IT start-ups, addressed on Sunday the crowd gathered at the World Congress of t... ...Tuesday, 03 November 2009 -
MIT's attack on EC2 an academic exercise
Category: Network Security & Hacking News/Latest Security News
... can be found on my personal blog. Check http://chenxiwang.wordpress.com/category/cloud-security/. What this attack highlights is that the security of cloud computing has everything to do with security ...Monday, 02 November 2009 -
The State of Security: Doing The Right Thing
Category: Network Security & Hacking News/Latest Security News
I was traveling a lot lately meeting many customers, presenting at 3 4 different events and hosting our quarterly customer advisory board meeting. After talking with dozens of peers, customers and other ...Monday, 02 November 2009 -
Summarizing Zero Day's Posts for October
Category: Network Security & Hacking News/Latest Security News
The following is a brief summary of all of my posts at ZDNet's Zero Day for October. You can also go through previous summaries, as well as subscribe to my personal RSS feed or Zero Day's main feed. Notable ...Monday, 02 November 2009 -
The Pavlovian yes box
Category: Network Security & Hacking News/Latest Security News
... of how to perform a task and to understand why it works. To train someone on a subject only gives them part of that equation. A person who has been trained on a subject only knows a process to accomplish ...Monday, 02 November 2009 -
Email with subject “Hello Darling” contains Cutwail trojan
Category: Network Security & Hacking News/Latest Security News
MX Lab intercepted new emails containing a new variant of the Cutwail trojan listening to the names Win32:Cutwail-AA (Avast) or W32/Trojan3.BLU (F-Prot). At Virus Total, only 11 of the 41 AV engines detect ...Monday, 02 November 2009 -
Malware Conceals Itself as Boss’s Letter
Category: Network Security & Hacking News/Latest Security News
... to Malware FAKEAV Uses Conficker Worm as Bait Users are advised to be wary in opening any attached file even if it comes from a person with authority or ‘boss’. Trend Micro users are protected ...Monday, 02 November 2009 -
Christmas Spam Spotted
Category: Network Security & Hacking News/Latest Security News
With Christmas just right around the corner, spammers are already flooding users' inboxes with unwanted emails. No surprises there. Spammers are known to exploit the holidays for its malicious activities. ...Monday, 02 November 2009 -
Week in review: Malicious email attachments, phishing trends, China's cyber army and Halloween attacks
Category: Network Security & Hacking News/Latest Security News
Here is an overview of some of last weekaposs most interesting news, interviews and articles: QA: Malware threats, Windows 7 and cyber crime Bo Olsen is a malware Researcher at Kaspersky Lab Ameri... ...Sunday, 01 November 2009 -
How Secure is your UK Online Banking?
Category: Network Security & Hacking News/Latest Security News
... Many UK banks still resort to the security dated “knowledge based” authentication along side a person’s password. “Knowledge based” authentication is about asking the account holder a question which only ...Sunday, 01 November 2009 -
Tabletop Science
Category: Network Security & Hacking News/Latest Security News
Mordaxus emailed some of us and said "I hope this doesn't mean MG has jumped the shark." What was he talking about? Apparently, ThinkGeek now has a "Molecular Gastronomy Starter Kit." For those of you ...Sunday, 01 November 2009 -
Email regarding Facebook account update is a phish – part 2
Category: Network Security & Hacking News/Latest Security News
... and got the login screen. When filling in dummy login and password we got redirected to the following screen and to our suprise we didn’t found a webform to submit personal details but instead ...Saturday, 31 October 2009 -
Cutwail trojan variant out in the wild
Category: Network Security & Hacking News/Latest Security News
MX Lab is intercepting quite a lot of viruses these days. Since October 27th, 2009, when we reported about the Facebook Password Reset Confirmation-campaign, we notice an serious increase in viruses. We ...Friday, 30 October 2009 -
Email regarding Facebook account update is a phish
Category: Network Security & Hacking News/Latest Security News
After a virus campaign, MX Lab now also intercepts a phishing campaign targetting Facebook users. The From address is obviously fake and not related to Facebook in any way. This email in particular was ...Friday, 30 October 2009 -
LinkedIN With 'Bill Gates'
Category: Network Security & Hacking News/Latest Security News
Bill Gates invited me to join his LinkedIN network. OK, so it wasn't really Bill Gates, but as far as my email system, spam filter, and email client were concerned, it's perfectly normal for Gates to send ...Friday, 30 October 2009 -
Finjan says controlled access Web portals now prime target of cybercriminals
Category: Network Security & Hacking News/Latest Security News
... using web application firewalls and securing the backend database using database security tools, he explained, are a logical course of preparing to defend those IT resources that contain personal and business ...Friday, 30 October 2009 -
Survey: Employees spend work time shopping
Category: Network Security & Hacking News/Latest Security News
... in 10 Americans who use a mobile work device such as a BlackBerry or iPhone plan to use it for holiday shopping. The increasing use of mobile work devices for personal business such as shopping can lead ...Friday, 30 October 2009 -
Check Point Adds Windows 7 OS Support To Endpoint Security
Category: Network Security & Hacking News/Latest Security News
Check Point Software Technologies Ltd., the worldwide leader in securing the Internet, today announced Windows 7 Microsoft operating system support for Check Point Endpoint Security, the first and only ...Friday, 30 October 2009 -
Defeating Zombies: Five Ways To Improve Defenses
Category: Network Security & Hacking News/Latest Security News
... Nessus has numerous plugins to test for a wide variety of applications installed on the user's desktop. Some recent scanning of my own personal systems revealed that some applications were out of date! ...Friday, 30 October 2009 -
Enterprise Open Source Intelligence Gathering – Part 3 Monitoring and Social Media Policies
Category: Network Security & Hacking News/Latest Security News
... is to put your Yahoo! Pipe RSS feeds and the other feeds you determined as important and put them into the RSS reader of your choice. I personally like Google Reader because it’s easy to use and ...Thursday, 29 October 2009 -
Do machines dream of electric malware?
Category: Network Security & Hacking News/Global Security News
Posted by: Oliver Fisher, Anti-Malware Team We've explored Google's anti-malware processes several times recently, as well as our efforts to work with webmasters to help protect their users. However, ...Thursday, 29 October 2009 -
Phishing experiment sneaks through all anti-spam filters
Category: Network Security & Hacking News/Latest Security News
A recently conducted ethical phishing (New study details the dynamics of successful phishing) experiment impersonating LinkedIn by mailing invitations coming from Bill Gates, has achieved a 100% success ...Thursday, 29 October 2009 -
Upgraded to Windows 7? Find out which patches you need
Category: Network Security & Hacking News/Latest Security News
Windows users who have been unimpressed by the features (and problems) offered by Vista have been rushing out and buying Windows 7. The reviews, so far, have been largely favourable but, as is the case ...Thursday, 29 October 2009 -
Facebook hit by phishing scam and banking Trojan combo
Category: Network Security & Hacking News/Latest Security News
Facebook users should be on the lookout for an email threat that is posing as a message from Facebook administrators. The message contains both a phishing scam and a notorious “banking Trojan” virus. ... ...Thursday, 29 October 2009 -
CubeCart 4 session management bypass leads to administrator access
Category: Network Security & Hacking News/Global Security News
Release Date: 2009/10/29 Author: Bogdan Calin (bogdan acunetix com) Severity: Critical Vendor Status: Vendor has released an updated version Release Date: 2009/10/29 Author: Bogdan Calin (bogdan ...Thursday, 29 October 2009 -
Mozilla update repairs Firefox buffer overflow vulnerabilities
Category: Network Security & Hacking News/Latest Security News
Repairs fix several critical memory corruption errors and buffer overflow flaws that could cause the browser to crash and leave users vulnerable to attack. Mozilla issued an update to its popular Firefox ...Thursday, 29 October 2009 -
Spear phishing scammers target Taiwan officials
Category: Network Security & Hacking News/Latest Security News
TrendLabs reports that they have discovered several instances of spear phishing. Spear phishing is a specific type of phishing fraud that involves customizable emails and URLs directed at specific t... ...Wednesday, 28 October 2009 -
Securing the Toughest Times
Category: Network Security & Hacking News/Latest Security News
... who is affected in order to know what needs to be protected. Security can also help properly protect the “list” prior to the official announcement. Security personnel (both physical and information) ...Wednesday, 28 October 2009 -
Partnerships and Procurement Are Not the Answer
Category: Network Security & Hacking News/Latest Security News
... cyber threats will require the Defense Department to work more closely with experts in industry... Indeed, the Pentagon must ultimately change its culture, say independent analysts and military personnel ...Wednesday, 28 October 2009
Site Search
Login Form
Sponsor Advertisements
 |