View Full Version : Security News

Pages : [1] 2 3 4 5 6 7 8 9 10

  1. Canada's Anti-Spam Legislation (CASL) 2014, (Tue, Jun 17th)
  2. Windows XP, slow to die :-( , (Wed, Jun 18th)
  3. Observations from Key-logged Passwords, (Sat, May 3rd)
  4. Microsoft Announces Special Patch for IE 0-day (Win XP included!), (Thu, May 1st)
  5. IE Zero Day Advisory from Microsoft, (Sun, Apr 27th)
  6. Testing your website for the heartbleed vulnerability with nmap, (Fri, Apr 18th)
  7. Oracle Critical Patch Update for April 2014, (Wed, Apr 16th)
  8. Brace Yourselves (and your Users / Clients) for Heartbleed SPAM, (Thu, Apr 10th)
  9. Testing for Heartbleed, (Wed, Apr 9th)
  10. Patch Tuesday pre-Announcement - XP officially becomes the enemy next week, (Fri, Apr 4th)
  11. Watching the watchers, (Thu, Apr 3rd)
  12. A few updates on "The Moon" worm, (Tue, Mar 25th)
  13. Odd ICMP Echo Request Payload, (Tue, Feb 4th)
  14. When an Attack isn't an Attack, (Mon, Feb 3rd)
  15. Phishing via Social Media, (Fri, Jan 24th)
  16. Spamming and scanning botnets - is there something I can do to block them from my si
  17. Malicious Ads from Yahoo, (Sat, Jan 4th)
  18. Microsoft December Patch Pre-Announcement, (Sat, Dec 7th)
  19. facebook, gmail and twitter accounts breached, (Fri, Dec 6th)
  20. Reports of higher than normal SSH Attacks, (Mon, Dec 2nd)
  21. Microsoft Security Advisory (2914486): Vulnerability in Microsoft Windows Kernel 0 da
  22. Am I Sending Traffic to a "Sinkhole"?, (Mon, Nov 18th)
  23. Kaspersky flags TCPIP.SYS as Malware, (Fri, Oct 25th)
  24. Yet Another WHMCS SQL Injection Exploit, (Sat, Oct 19th)
  25. Oracle releases Oracle Critical Patch Update Advisory, (Tue, Oct 15th)
  26. "microsoft support" calls - now with ransomware, (Wed, Oct 2nd)
  27. Twitter DM spam/malware, (Mon, Sep 30th)
  28. When does your browser send a "Referer" header (or not)?, (Sun, Aug 25th)
  29. Information leakage through cloud file storage services, (Wed, Aug 7th)
  30. OpenX Ad Server Backdoor, (Tue, Aug 6th)
  31. Defending Against Web Server Denial of Service Attacks, (Sat, Jul 27th)
  32. Decoy Personas for Safeguarding Online Identity Using Deception, (Sat, Jul 13th)
  33. Physical Security in the Cyber World, (Thu, Jun 27th)
  34. Linkedin DNS Hijack, (Thu, Jun 20th)
  35. Store passwords the right way, (Tue, Jun 11th)
  36. UDP port 1434 directed attack to AS13489 IP ranges, (Fri, May 24th)
  37. Microsoft Security Advisory 2846338, (Tue, May 14th)
  38. Extracting Digital Signatures from Signed Malware, (Sat, May 11th)
  39. Microsoft and Adobe Patch Tuesday Pre-Release, (Fri, May 10th)
  40. Apache binary backdoor adds malicious redirect to Blackhole, (Tue, Apr 30th)
  41. Report Fake Tech Support Calls submission form reminder, (Mon, Apr 29th)
  42. A Chargen-based DDoS? Chargen is still a thing?, (Sun, Apr 21st)
  43. KB2823324 causing boot issues in Brazil and some other locales, (Thu, Apr 11th)
  44. Request for web log files (mainly 500 error messages), (Mon, Apr 1st)
  45. Where Were You During the Great DDoS Cybergeddon of 2013?, (Thu, Mar 28th)
  46. How Your Webhosting Account is Getting Hacked, (Mon, Mar 25th)
  47. Windows 7 SP1 and Windows Server 2008 R2 SP1 Being "pushed" today, (Tue, Mar 19th)
  48. AVG detect legit file as virus, (Fri, Mar 15th)
  49. Wipe the drive! Stealthy Malware Persistence - Part 2, (Thu, Mar 14th)
  50. Wipe the drive! Stealthy Malware Persistence Mechanism - Part 1, (Wed, Mar 13th)
  51. Apple Blocks Older Insecure Versions of Flash Player, (Sat, Mar 2nd)
  52. And the Java 0-days just keep on coming, (Fri, Mar 1st)
  53. Parsing Windows Eventlogs in Powershell, (Thu, Feb 28th)
  54. Trustwave Trustkeeper Phish, (Mon, Feb 25th)
  55. Mass-Customized Malware Lures: Don't trust your cat!, (Mon, Feb 25th)
  56. SSHD rootkit in the wild, (Thu, Feb 21st)
  57. NBC site redirecting to Exploit kit, (Thu, Feb 21st)
  58. Adobe Acrobat and Reader Security Update Planed this Week, (Sun, Feb 17th)
  59. Fedora RedHat Vulnerabilty Released, (Sat, Feb 16th)
  60. Adobe Feb 2013 Black Tuesday patches, (Tue, Feb 12th)
  61. Is This Chinese Registrar Really Trying to XSS Me?, (Mon, Feb 11th)
  62. Microsoft February Patch Tuesday Advance Notification, (Fri, Feb 8th)
  63. Intel Network Card (82574L) Packet of Death, (Wed, Feb 6th)
  64. February 2013 OUCH! - Email Phishing Attacks http://www.securingthehuman.org/resourc
  65. Twitter Confirms Compromise of Approximately 250,000 Users, (Sat, Feb 2nd)
  66. Java 7 Update 11 Still has a Flaw, (Sat, Jan 19th)
  67. Sysinternals Updates, (Sun, Jan 13th)
  68. You encrypt your laptops, but what about portable media?, (Sat, Jan 12th)
  69. Oracle Patch Tuesday Pre-Release, (Sat, Jan 12th)
  70. What Else runs Telnets? Or, Pentesters Love Video Conferencing Units Too!, (Thu, Ja
  71. Java is still exploitable and is likely going to remain so., (Thu, Jan 10th)
  72. New Format for Monthly Threat Update, (Wed, Jan 9th)
  73. A picture worth a 1000 barcodes?, (Tue, Jan 8th)
  74. A Bit About the NVIDIA Vulnerability, (Sun, Jan 6th)
  75. D-link Wireless-G Router Year Issue (Y2K-plus-13), (Sat, Jan 5th)
  76. Adobe ColdFusion Security Advisory, (Sat, Jan 5th)
  77. FixIt Available for Internet Explorer Vulnerability, (Tue, Jan 1st)
  78. Targeted zero day attack being used against Internet Explorer 6, 7, and 8, (Sun, Dec
  79. It's 3pm 2 days after Christmas, do you know where your unmanaged SSH keys are?, (Thu
  80. Google blocks silent Chrome extension installation, (Mon, Dec 24th)
  81. Microsoft re-releases MS12-078, (Fri, Dec 21st)
  82. VMWare posts some updates, (Fri, Dec 21st)
  83. Challenges of Anti-Phishing Advice, the Google Docs Edition, (Wed, Dec 19th)
  84. What if Tomorrow Was the Day?, (Thu, Dec 13th)
  85. Joomla (and WordPress) Bulk Exploit Going on, (Mon, Dec 10th)
  86. Your CPA License has not been revoked, (Mon, Dec 10th)
  87. Fake tech support calls - revisited, (Thu, Dec 6th)
  88. Where do your backup tapes go to die?, (Tue, Dec 4th)
  89. John McAfee Exposes His Location in Photo About His Being on Run, (Mon, Dec 3rd)
  90. Zero Day MySQL Buffer Overflow, (Sun, Dec 2nd)
  91. Snipping Leaks, (Fri, Nov 30th)
  92. ISC Feature of the Week: SSH Scan Reports, (Thu, Nov 29th)
  93. McAfee releases extraDAT for W32/Autorun.worm.aaeb-h, (Wed, Nov 28th)
  94. Can users' phish emails be a security admin's catch of the day?, (Tue, Nov 27th)
  95. What's in Your Change Control Form?, (Fri, Nov 23rd)
  96. Behind the Random NTP Bizarreness of Incorrect Year Being Set, (Tue, Nov 20th)
  97. New Poll: Top 5 Unresolved Security Problems of 2012, (Tue, Nov 20th)
  98. New Sysinternal Updates: AdExplorer v1.44, Contig v1.7, Coreinfo v3.2, Procdump v5.1.
  99. VMware security updates for vSphere API and ESX Service Console - http://www.vmware.c
  100. Another month another password disclosure breach, (Thu, Nov 15th)
  101. Skype account hijack vulnerability fixed, (Wed, Nov 14th)
  102. Request for info: Robocall Phishing Against Local/Regional Banks, (Mon, Nov 12th)
  103. Fresh batch of Microsoft patches next week , (Fri, Nov 9th)
  104. Remote Diagnostics with PSR, (Fri, Nov 9th)
  105. Adobe Patches, (Thu, Nov 8th)
  106. Cisco TACACS+ Authentication Bypass, (Wed, Nov 7th)
  107. Multiple 0-Days Reported! , (Wed, Nov 7th)
  108. Help eliminate unquoted path vulnerabilities, (Wed, Nov 7th)
  109. Reminder: Ongoing SMTP Brute Forcing Attacks, (Mon, Nov 5th)
  110. Lamiabiocasa, (Fri, Nov 2nd)
  111. The shortcomings of anti-virus software, (Fri, Nov 2nd)
  112. Apple iOS 6.0.1 released, contains also security fixes, see http://support.apple.com/
  113. Patched your Java yet?, (Thu, Nov 1st)
  114. Cyber Security Awareness Month - Day 31 - Business Continuity and Disaster Recovery,
  115. Cyber Security Awareness Month - Day 30 - DSD 35 mitigating controls, (Tue, Oct 30th)
  116. Splunk 5.0 SP-CAAAHB4 http://www.splunk.com/view/SP-CAAAHB4, (Tue, Oct 30th)
  117. Cyber Security Awareness Month - Day 29 - Clear Desk: The Unacquainted Standard, (Mon
  118. ISC StormCast for Monday, October 29th 2012 http://isc.sans.edu/podcastdetail.html?id
  119. Firefox 16.02 Released, (Sun, Oct 28th)
  120. Cyber Security Awareness Month - Day 25 - Pro Audio & Video Packets on the Wire, (Thu
  121. Cyber Security Awareness Month - Day 23: Character Encoding Standards - ASCII and Suc
  122. Potential Phish for Regular Webmail Accounts, (Sun, Oct 21st)
  123. Cyber Security Awareness Month - Day 17 - A Standard for Risk Management - ISO 27005,
  124. Please enter a headline here, (Tue, Oct 16th)
  125. ISC StormCast for Tuesday, October 16th 2012 http://isc.sans.edu/podcastdetail.html?i
  126. ISC StormCast for Monday, October 15th 2012 http://isc.sans.edu/podcastdetail.html?id
  127. Cyber Security Awareness Month - Day 14 - Poor Man's File Analysis System - Part 1, (
  128. ISC StormCast for Friday, October 12th 2012 http://isc.sans.edu/podcastdetail.html?id
  129. Cyber Security Awareness Month - Day 12 PCI DSS, (Fri, Oct 12th)
  130. Cyber Security Awareness Month - Day 11 - Vendor Agnostic Standards (Center for Inter
  131. Firefox 16 / Thunderbird 16 updates, (Thu, Oct 11th)
  132. ISC StormCast for Thursday, October 11th 2012 http://isc.sans.edu/podcastdetail.html?
  133. Cyber Security Awareness Month - Day 10 - Standard Sudo - Part Two, (Wed, Oct 10th)
  134. Facebook Scam Spam, (Wed, Oct 10th)
  135. ISC StormCast for Wednesday, October 10th 2012 http://isc.sans.edu/podcastdetail.html
  136. Microsoft October 2012 Black Tuesday Update - Overview, (Tue, Oct 9th)
  137. Cyber Security Awreness Month - Day 9 - Request for Comment (RFC) , (Tue, Oct 9th)
  138. ISC StormCast for Tuesday, October 9th 2012 http://isc.sans.edu/podcastdetail.html?id
  139. Adobe Flash Player update http://www.adobe.com/support/security/bulletins/apsb12-22.h
  140. ISC StormCast for Monday, October 8th 2012 http://isc.sans.edu/podcastdetail.html?id=
  141. Cyber Security Awareness Month - Day 6 - NERC: The standard that enforces security on
  142. Reports of a Distributed Injection Scan, (Fri, Oct 5th)
  143. Cyber Security Awareness Month - Day 5: Standards Body Soup, So many Flavors in the b
  144. ISC Feature of the Week: Report Fake Tech Support Call Statistics, (Fri, Oct 5th)
  145. VMWare Security Advisory: VMSA-2012-0014 - http://www.vmware.com/security/advisories/
  146. ISC StormCast for Friday, October 5th 2012 http://isc.sans.edu/podcastdetail.html?id=
  147. Microsoft October Patch Pre-Announcement, (Thu, Oct 4th)
  148. Cyber Security Awareness Month - Day 4: Crypto Standards, (Thu, Oct 4th)
  149. And the SHA-3 title goes to .....Keccak, (Thu, Oct 4th)
  150. ISC StormCast for Thursday, October 4th 2012 http://isc.sans.edu/podcastdetail.html?i
  151. Standard Sudo - Part One, (Wed, Oct 3rd)
  152. Fake Support Calls Reported, (Wed, Oct 3rd)
  153. October 2012 OUCH! - Losing Your Mobile Device http://www.securingthehuman.org/resour
  154. ISC StormCast for Wednesday, October 3rd 2012 http://isc.sans.edu/podcastdetail.html?
  155. PCI Security Standard: Mobile Payment Acceptance Security Guidelines, (Tue, Oct 2nd)
  156. ISC StormCast for Tuesday, October 2nd 2012 http://isc.sans.edu/podcastdetail.html?id
  157. Cyber Security Awareness Month, (Mon, Oct 1st)
  158. ISC StormCast for Monday, October 1st 2012 http://isc.sans.edu/podcastdetail.html?id=
  159. Adobe certification revocation for October 4th, (Fri, Sep 28th)
  160. ISC StormCast for Friday, September 28th 2012 http://isc.sans.edu/podcastdetail.html?
  161. ISC Feature of the Week: Glossary, (Thu, Sep 27th)
  162. Cisco IOS Security Advisory Bundle - http://www.cisco.com/web/about/security/intellig
  163. ISC StormCast for Thursday, September 27th 2012 http://isc.sans.edu/podcastdetail.htm
  164. More Java Woes, (Wed, Sep 26th)
  165. ISC StormCast for Wednesday, September 26th 2012 http://isc.sans.edu/podcastdetail.ht
  166. ISC StormCast for Tuesday, September 25th 2012 http://isc.sans.edu/podcastdetail.html
  167. ISC StormCast for Monday, September 24th 2012 http://isc.sans.edu/podcastdetail.html?
  168. Update for CVE-2012-3132, (Sun, Sep 23rd)
  169. Storing your Collection of Malware Samples with Malwarehouse, (Fri, Sep 21st)
  170. Update for Vulnerabilities in Adobe Flash Player in Internet Explorer 10 (2755801), (
  171. IE Cumulative Updates MS12-063 - KB2744842, (Fri, Sep 21st)
  172. iOS 6 Security Roundup, (Fri, Sep 21st)
  173. ISC StormCast for Friday, September 21st 2012 http://isc.sans.edu/podcastdetail.html?
  174. Apple and Cisco Security Advisories 19 SEP 2012, (Thu, Sep 20th)
  175. Flash Player update but no announcement, check your version http://www.adobe.com/soft
  176. ISC StormCast for Thursday, September 20th 2012 http://isc.sans.edu/podcastdetail.htm
  177. IE Fixes Available, (Thu, Sep 20th)
  178. Sophos detecting itself as SHH/Updater-B, (Wed, Sep 19th)
  179. iOS6 released: a few CVEs addresses, breaks mapping., (Wed, Sep 19th)
  180. Volatility: 2.2 is Coming Soon, (Wed, Sep 19th)
  181. eicar.org still down from "hardware issues", (Wed, Sep 19th)
  182. ISC StormCast for Wednesday, September 19th 2012 http://isc.sans.edu/podcastdetail.ht
  183. ISC StormCast for Tuesday, September 18th 2012 http://isc.sans.edu/podcastdetail.html
  184. What's on your iPad?, (Mon, Sep 17th)
  185. IE8 Zero Day is "For Real", (Mon, Sep 17th)
  186. ISC StormCast for Monday, September 17th 2012 http://isc.sans.edu/podcastdetail.html?
  187. ISC Feature of the Week: Privacy Policy, (Fri, Sep 14th)
  188. Scam Report - Fake Voice Mail Email Notification Redirects to Malicious Site, (Fri, S
  189. Analyzing Malicious RTF Files Using OfficeMalScanner's RTFScan, (Fri, Sep 14th)
  190. ISC StormCast for Friday, September 14th 2012 http://isc.sans.edu/podcastdetail.html?
  191. More SSL trouble, (Thu, Sep 13th)
  192. Microsoft disrupts traffic associated with the Nitol botnet, (Thu, Sep 13th)
  193. TCP Fuzzing with Scapy, (Thu, Sep 13th)
  194. ISC StormCast for Thursday, September 13th 2012 http://isc.sans.edu/podcastdetail.htm
  195. September 2012 OUCH! - Hacked: Now What? http://www.securingthehuman.org/resources/ne
  196. ISC StormCast for Wednesday, September 12th 2012 http://isc.sans.edu/podcastdetail.ht
  197. Microsoft September 2012 Black Tuesday Update - Overview, (Tue, Sep 11th)
  198. ISC StormCast for Tuesday, September 11th 2012 http://isc.sans.edu/podcastdetail.html
  199. Godaddy DDoS Attack, (Mon, Sep 10th)
  200. Blue Toad publishing co compromise lead to UDID release. http://redtape.nbcnews.com/_
  201. Microsoft Patch Tuesday Pre-Release, (Mon, Sep 10th)
  202. ISC StormCast for Monday, September 10th 2012 http://isc.sans.edu/podcastdetail.html?
  203. Phishing/Spam Pretending to be from BBB, (Sun, Sep 9th)
  204. Webmin Input Validation Vulnerabilities, (Sat, Sep 8th)
  205. Keeping an eye on those BYODs with DHCP, (Fri, Sep 7th)
  206. ISC StormCast for Friday, September 7th 2012 http://isc.sans.edu/podcastdetail.html?i
  207. SSL Requests sent to port 80 (request for help/input), (Thu, Sep 6th)
  208. ISC StormCast for Thursday, September 6th 2012 http://isc.sans.edu/podcastdetail.html
  209. Auditing a Network for VOIP Call Quality Metrics, (Wed, Sep 5th)
  210. ISC StormCast for Wednesday, September 5th 2012 http://isc.sans.edu/podcastdetail.htm
  211. Another round of "Spot the Exploit E-Mail", (Tue, Sep 4th)
  212. ISC StormCast for Tuesday, September 4th 2012 http://isc.sans.edu/podcastdetail.html?
  213. Demonstrating the value of your Intrusion Detection Program and Analysts, (Sun, Sep 2
  214. Blackhole targeting Java vulnerability via fake Microsoft Services Agreement email ph
  215. Not so fast: Java 7 Update 7 critical vulnerability discovered in less than 24 hours,
  216. VMware Updates, (Fri, Aug 31st)
  217. ISC StormCast for Friday, August 31st 2012 http://isc.sans.edu/podcastdetail.html?id=
  218. Oracle Releases Java Security Updates, (Thu, Aug 30th)
  219. Editorial: The Slumlord Approach to Network Security http://isc.sans.edu/j/editorial,
  220. Analyzing outgoing network traffic (part 2), (Thu, Aug 30th)
  221. ISC StormCast for Thursday, August 30th 2012 http://isc.sans.edu/podcastdetail.html?i
  222. "Data" URLs used for in-URL phishing, (Wed, Aug 29th)
  223. ISC StormCast for Wednesday, August 29th 2012 http://isc.sans.edu/podcastdetail.html?
  224. Firefox 15 Released (includes silent future updates) http://www.mozilla.org/en-US/fir
  225. The Good, Bad and Ugly about Assigning IPv6 Addresses, (Mon, Aug 27th)
  226. ISC StormCast for Tuesday, August 28th 2012 http://isc.sans.edu/podcastdetail.html?id
  227. Quick Bits about Today's Java 0-Day, (Mon, Aug 27th)
  228. Malware Spam harvesting Facebook Information, (Mon, Aug 27th)
  229. Who ya gonna contact?, (Sun, Aug 26th)
  230. ISC StormCast for Monday, August 27th 2012 http://isc.sans.edu/podcastdetail.html?id=
  231. ISC StormCast for Friday, August 24th 2012 http://isc.sans.edu/podcastdetail.html?id=
  232. ISC Feature of the Week: Contact Us, (Thu, Aug 23rd)
  233. Analyzing outgoing network traffic, (Thu, Aug 23rd)
  234. ISC StormCast for Thursday, August 23rd 2012 http://isc.sans.edu/podcastdetail.html?i
  235. ISC StormCast for Wednesday, August 22nd 2012 http://isc.sans.edu/podcastdetail.html?
  236. Phishing/spam via SMS, (Wed, Aug 22nd)
  237. Apple Remote Desktop update fixes no encryption issue, (Wed, Aug 22nd)
  238. RuggedCom fails key management 101 on Rugged Operating System (ROS), (Tue, Aug 21st)
  239. YYABCAU - Yes Yet Another Bleeping Critical Adobe Flash Update, (Tue, Aug 21st)
  240. ISC StormCast for Tuesday, August 21st 2012 http://isc.sans.edu/podcastdetail.html?id
  241. Do we need test procedures in our companies before implementing Antivirus signatures?
  242. Authentication Issues between entities during protocol message exchange in SCADA Syst
  243. ISC StormCast for Monday, August 20th 2012 http://isc.sans.edu/podcastdetail.html?id=
  244. ISC StormCast for Friday, August 17th 2012 http://isc.sans.edu/podcastdetail.html?id=
  245. Suspicious eFax Spear Phishing Messages, (Fri, Aug 17th)
  246. A Poor Man's DNS Anomaly Detection Script, (Thu, Aug 16th)
  247. ISC StormCast for Thursday, August 16th 2012 http://isc.sans.edu/podcastdetail.html?i
  248. Cisco IOS XR Software Route Processor DoS Vulnerability - http://tools.cisco.com/secu
  249. Wireshark Security Update, (Wed, Aug 15th)
  250. ISC StormCast for Wednesday, August 15th 2012 http://isc.sans.edu/podcastdetail.html?