- Vuln: Mahara Resume Blocktype Cross Site Scripting Vulnerability
- Vuln: Mahara Admin Password Reset Security Bypass Vulnerability
- Vuln: eCryptfs 'parse_tag_3_packet()' Packet Heap Based Buffer Overflow Vulnerability
- Vuln: Cisco VPN Client for Windows 'StartServiceCtrlDispatche' Local Denial of Service Vulnerability
- Vuln: HP OpenView Network Node Manager 'ovdbrun.exe' Denial of Service Vulnerability
- Vuln: PHP Versions Prior to 5.3.1 Multiple Vulnerabilities
- Vuln: KDE KDELibs 'dtoa()' Remote Code Execution Vulnerability
- Vuln: PEAR Sendmail 'From' Parameter Arbitrary Argument Injection Vulnerability
- Vuln: IBM Rational Products Multiple Cross Site Scripting Vulnerabilities
- Vuln: Microsoft Internet Explorer 'Style' Object Remote Code Execution Vulnerability
Search
Search Result
-
COFEE Break Turns Messy
Category: Network Security & Hacking News/Global Security News
A common challenge of cybercrime investigations is the need to conduct forensic analysis on a computer before it is powered down and restarted. As some active system processes and network data are volatile ...Friday, 20 November 2009 -
PHP “multipart/form-data” denial of service
Category: Network Security & Hacking News/Global Security News
... two independent parts, that can be used separately or in combination. The first part is a small patch against the PHP core, that implements a few low-level protections against bufferoverflows or format ...Thursday, 19 November 2009 -
Job Spam Uses Twitter
Category: Network Security & Hacking News/Latest Security News
... may think the email they received is legitimate. Users are advised to be wary of opening any suspicious-looking emails. Trend Micro protects users via the Trend Micro Smart Protection Network, ...Thursday, 19 November 2009 -
Chrome OS is coming, and it is impressive
Category: Network Security & Hacking News/Latest Security News
... own memory space. Processes are chrooted. Stack protection, as you might expect. OS segregation. The OS enforces separate disk partitions for system (root) and user data. User data protection. User data ...Thursday, 19 November 2009 -
Update: bpmtk with hook-createprocess.dll
Category: Network Security & Hacking News/Latest Security News
... the process, shellcode could undo this patching and bypass our protection. Or it could use the ntdll API and not be hindered by our patch. But actual malware found in-the-wild doesn’t do this (not talking ...Thursday, 19 November 2009 -
Microsoft finds security hole in Google Chrome Frame
Category: Network Security & Hacking News/Latest Security News
A security researcher in the Microsoft Vulnerability Research (MSVR) has discovered a "high risk" Google Chrome Frame security vulnerability that could allow an attacker to bypass cross-origin protections. ...Thursday, 19 November 2009 -
Fake Blogs Lead to FAKEAV
Category: Network Security & Hacking News/Latest Security News
... by Trend Micro Smart Protection Network. Post from: TrendLabs | Malware Blog - by Trend Micro Fake Blogs Lead to FAKEAV Read Full Article ...Wednesday, 18 November 2009 -
T-Mobile Admits Employee Sold Private Data
Category: Network Security & Hacking News/Latest Security News
... major breach of data protection laws. So, wait. He/she sold the data to other companies? While jail is possible it appears that the individual penalties Greed can be a real bugger. From Reuters: ...Wednesday, 18 November 2009 -
Scareware Campaign Using Google Sponsored Links
Category: Network Security & Hacking News/Latest Security News
... AdwarePro_Setup2305.exe. Consider going through the The Ultimate Guide to Scareware Protection detailing alternative traffic acquisition approaches used by scareware campaigners, as well as the related ...Wednesday, 18 November 2009 -
Cloud Security Front And Center
Category: Network Security & Hacking News/Latest Security News
... protection, operational integrity, vulnerability management, business continuity (BC), disaster recovery (DR), and identity management (IAM) make up the list of security issues for cloud computing. Privacy ...Wednesday, 18 November 2009 -
Push-Button Forensics
Category: Network Security & Hacking News/Latest Security News
Digital forensics, computer forensics, or whatever you want to call the investigation and analysis of computer systems and digital media, is a challenging field that requires deep knowledge of the systems ...Wednesday, 18 November 2009 -
Verizon at SANS Incident Detection Summit
Category: Network Security & Hacking News/Latest Security News
The SANS WhatWorks in Incident Detection Summit 2009 will be held on December 9-10 in Washington, D.C. It follows the 2008 and 2009 editions of the SANS WhatWorks in Forensics and Incident Response Summits. ...Wednesday, 18 November 2009 -
Payment Request Spam Contains Malware
Category: Network Security & Hacking News/Latest Security News
... from any company first just to be sure it is legitimate. Trend Micro secures users from this attack via the Trend Micro Smart Protection Network™, which detects and blocks the spammed emails and prevents ...Tuesday, 17 November 2009 -
Meteor Shower and New Moon Lead to FAKEAV
Category: Network Security & Hacking News/Latest Security News
... attack via the Smart Protection Network™ that blocks and detects all related malicious files and URLs. Post from: TrendLabs | Malware Blog - by Trend Micro Meteor Shower and New Moon Lead to FAKEAV ...Tuesday, 17 November 2009 -
FBI Suspects Terrorists Are Exploring Cyber Attacks
Category: Network Security & Hacking News/Global Security News
... While there is no evidence that terrorist groups have developed sophisticated cyber-attack capabilities yet, a lack of security protections in This story comes to us via Homeland Security - National ...Tuesday, 17 November 2009 -
Social Networking and the Government -- Weighing the Benefits vs. the Pitfalls
Category: Network Security & Hacking News/Latest Security News
Organizations everywhere have been rapidly adopting the use of social networking tools over the last couple of years and recent data suggests that the use of these tools has exploded exponentially in enterprises ...Tuesday, 17 November 2009 -
Protect Data or Get Fined
Category: Network Security & Hacking News/Global Security News
... from 277 the year before. This is what Deputy information commissioner David Smith said: “The majority of organisations get data protection right, but regrettably a significant minority of management ...Tuesday, 17 November 2009 -
Massive Scareware Serving Blackhat SEO, the Koobface Gang Style
Category: Network Security & Hacking News/Latest Security News
... .cn or moored2009 .cn redirectors, as well as the scareware serving premium-protection6 .com; file-antivirus3.com; checkalldata .com; ... Ali Baba and the 40 thieves LLC are once again multi-tasking, ...Tuesday, 17 November 2009 -
Best practices for DNS security
Category: Network Security & Hacking News/Latest Security News
Securing the DNS must be a priority because it is so central to the proper functioning of every IP network. Employing the best possible protections for the DNS will pay huge dividends over time. The ... ...Tuesday, 17 November 2009 -
Metasploit Framework 3.3 released
Category: Network Security & Hacking News/Latest Security News
The Metasploit Framework is a development platform for creating security tools and exploits. The framework is used by network security professionals to perform penetration tests, system administr... The ...Tuesday, 17 November 2009 -
Tenable Network Security Podcast - Episode 12
Category: Network Security & Hacking News/Latest Security News
Welcome to the Tenable Network Security Podcast - Episode 12 Announcements A new blog post has been released that covers my experiences scanning Windows 7 with the latest version of Nessus 4.2 (yet to ...Monday, 16 November 2009 -
New Study Provides Real-World Data on Leading Software Security Initiatives in Europe
Category: Network Security & Hacking News/Latest Security News
Fortify Software, the market leader in Software Security Assurance solutions, and Cigital, the largest software security consulting firm in the world, announced today the release of the Building Security ...Monday, 16 November 2009 -
Cyber-Ark Expands Into Superuser Access Control Market
Category: Network Security & Hacking News/Latest Security News
When it comes to managing privileged identities, most enterprises have been forced to invest in separate solutions to manage the lifecycle and access-control policies across all shared and superuser accounts, ...Monday, 16 November 2009 -
Check Point Awarded International Common Criteria EAL4 Certification for Full Disk Encryption
Category: Network Security & Hacking News/Latest Security News
... EAL4 certification can now benefit from the data protection Full Disk Encryption offers. Full Disk Encryption provides the highest level of data security for laptops and PCs through a combination of pre-boot ...Monday, 16 November 2009 -
NetAge joins the Neptuny Business Partner Program
Category: Network Security & Hacking News/Latest Security News
Neptuny, the leading provider of Performance Optimization and IT Resource Management solutions for large data centers and networks, today announced that NetAge Solutions GmbH, a German-based innovative ...Monday, 16 November 2009 -
Check Point Positioned in the Leaders Quadrant of the Mobile Data Protection
Category: Network Security & Hacking News/Latest Security News
... Magic Quadrant for Mobile Data Protection. “We believe Check Point’s leader position reflects our strong vision and execution in delivering to businesses secure and simple to Check Point Software ...Monday, 16 November 2009 -
Comscore selects Aster Data for data analytics
Category: Network Security & Hacking News/Latest Security News
Aster Data, a proven leader dedicated to providing the best data processing and management platform for ‘Big Data’ applications, today announced that comScore (Nasdaq: SCOR), a global leader in measuring ...Monday, 16 November 2009 -
Aster Data announces version 4.0, for ultra-fast analysis of Big Data
Category: Network Security & Hacking News/Latest Security News
Aster Data, a proven leader dedicated to providing the best data processing and management platform for ‘Big Data’ applications, today announced Aster Data Version 4.0, the industry’s first ‘Massively ...Monday, 16 November 2009 -
DiabloNova's blog: 022: Lying Dr.Web, Igor Daniloff, SpiDiE
Category: Network Security & Hacking News/Latest Security News
022: Lying Dr.Web, Igor Daniloff, SpiDiE Continuing and ridiculous games from Dr.Web company. While unable to improve their pathetic self-protection (placed inside dwprot.sys/dwprot.dll) company ... 022: ...Saturday, 14 November 2009 -
Lifehacker: Stop Paying for Windows Security; Microsoft's Security Tools Are Good Enough
Category: Network Security & Hacking News/Latest Security News
Lifehacker: Stop Paying for Windows Security; Microsoft's Security Tools Are Good Enough Lifehacker: Stop Paying for Windows Security; Microsoft's Security Tools Are Good Enough Read Full ArticleSaturday, 14 November 2009 -
Refocusing my professional career
Category: Network Security & Hacking News/Latest Security News
It has been almost three weeks since my last post and because my goal is to provide one or two posts a week, that is simply too long. My silence can partially be explained by simple mundane things like ...Friday, 13 November 2009 -
Imperva & WhiteHat Security Co-Present at Interop NY
Category: Network Security & Hacking News/Latest Security News
... Center on 11th ave on the November 18th at 1:30 PM ET. The title of our presentation is: Cover Your Assets: Real Time Application Security Assessment & Protection In addition to the presentation, we'll ...Friday, 13 November 2009 -
Interesting Information Security Bits for 11/12/2009
Category: Network Security & Hacking News/Latest Security News
... Leaders Tags: ( career ) Layer 2 Network Protections against Man in the Middle Attacks Tags: ( defense networking ) Acunetix Web Application Security Blog Looking Good afternoon everybody! I hope ...Thursday, 12 November 2009 -
Marcus Ranum Named "Industry Pioneer" By SC Magazine
Category: Network Security & Hacking News/Latest Security News
Tenable's CSO Marcus Ranum was quoted in an article from SC Magazine titled "Industry pioneers". In it Marcus gives us some insight into how he perceives his accomplishments: “I like to think of myself ...Thursday, 12 November 2009 -
H Security: A first impression of Microsoft's forensic tools that got away
Category: Network Security & Hacking News/Latest Security News
H Security: A first impression of Microsoft's forensic tools that got away H Security: A first impression of Microsoft's forensic tools that got away Read Full ArticleThursday, 12 November 2009 -
Live – World Response Conference on Global Outbreak
Category: Network Security & Hacking News/Global Security News
... conference to highlight the first real-time test on global and domestic preparedness in the aspect of prevention, protection, response, and recovery. The global and national This story comes to us ...Thursday, 12 November 2009 -
Scanning Windows 7 With Nessus 4.2
Category: Network Security & Hacking News/Latest Security News
Windows 7 - a "Shiny" New Operating System Most experts agree that producing Windows Vista was not a shining moment for Microsoft. It was plagued with problems from the start, including performance and ...Thursday, 12 November 2009 -
Koobface Botnet's Scareware Business Model - Part Two
Category: Network Security & Hacking News/Latest Security News
... mode for my very own branded scareware release - the Advanced Pro-Danchev Premium Live Mega Professional Anti-Spyware Online Cleaning Cyber Protection Scanner 2010. It's time to summarize some of the ...Wednesday, 11 November 2009 -
£500,000 maximum fine for data protection breaches: Government consults
Category: Network Security & Hacking News/Latest Security News
The Information Commissioner's Office (ICO) would have the power to fine organisations up to £500,000 for serious breaches of data protection principles under plans announced this week by the Ministry ...Wednesday, 11 November 2009 -
A first impression of Microsoft's forensic tools that got away
Category: Network Security & Hacking News/Latest Security News
Copies of Microsoft's COFEE collection of forensic tools, which is only intended for criminal prosecution services and investigators, have leaked into the internet. A closer look reveals... Copies of ...Tuesday, 10 November 2009 -
Protecting OSs from RootKits
Category: Network Security & Hacking News/Latest Security News
Interesting research: "Countering Kernel Rootkits with Lightweight Hook Protection," by Zhi Wang, Xuxian Jiang, Weidong Cui, and Peng Ning. Abstract: Kernel rootkits have posed serious security threats ...Tuesday, 10 November 2009 -
Rogue Security Product Copies McAfee’s Look and Feel
Category: Network Security & Hacking News/Global Security News
How good are you at identifying a genuine security product from an imposter that claims to offer protection? If you think you are good at it, then have a look at the images below. ...Tuesday, 10 November 2009 -
Lost+Found: root kit protection, Koobface, Windows 7, Gumblar
Category: Network Security & Hacking News/Latest Security News
HookSafe blocks rootkits, Koobface making use of Google Reader, UAC under Windows 7, Gumblar attacks on the rise again HookSafe blocks rootkits, Koobface making use of Google Reader, UAC under Windows ...Tuesday, 10 November 2009 -
Pacquiao VS Cotto
Category: Network Security & Hacking News/Global Security News
... installed. This fake online scanning is seen hosted at the following domains: secure-pcprotection.net examinedicho.com This malware is now detected as FakeAlert-AB. Always update your security ...Tuesday, 10 November 2009 -
New Koobface Component Imitates Facebook User
Category: Network Security & Hacking News/Latest Security News
... and security conscious. It is probable that Koobface botnet owns a particular Facebook account. It’s a good thing that the Trend Micro Smart Protection Network continues to block malicious URLs spammed ...Tuesday, 10 November 2009 -
Partially Spilled COFEE
Category: Network Security & Hacking News/Latest Security News
It turns out the version of COFEE (Computer Online Forensic Evidence Extractor) posted to BitTorrent sites is incomplete: it contains only 45 commands, whereas Microsoft claims the tool executes over 150 ...Tuesday, 10 November 2009 -
Stakeholders back consumer-style insurance protections for micro-businesses
Category: Network Security & Hacking News/Latest Security News
Many of the smallest businesses are unaware when they buy insurance that failing to volunteer information the insurer considers relevant could lose them their cover, research revealed this month. Many ...Tuesday, 10 November 2009 -
Is Antivirus Dead?
Category: Network Security & Hacking News/Latest Security News
... programs such as Bit9 Parity and Savant Protection -- and I personally recommend Malwarebytes' Anti-Malware -- but a lot of users are going to have trouble with this. The average user will probably just ...Monday, 09 November 2009 -
Mootools Blog
Category: News Feeds / Related Projects
http://feeds.feedburner.com/mootools-blog
