The Blog
HOME
Thursday, January 31, 2013
Rubygems site recovers from compromise
http://www.h-online.com/security/news/item/Rubygems-site-recovers-from-compromise-1794746.html
Latest VLC version has dangerous hole
http://www.h-online.com/security/news/item/Latest-VLC-version-has-dangerous-hole-1794474.html
Opera Browser Update Patches Remote Code Execution Vulnerabilities
http://threatpost.com/en_us/blogs/opera-browser-update-patches-remote-code-execution-vulnerabilities-013013
Chinese hackers break into the New York Times, steal every employee's password
http://nakedsecurity.sophos.com/2013/01/31/chinese-new-york-times-hackers/
How Yahoo allowed hackers to hijack my neighbor's e-mail account
http://arstechnica.com/security/2013/01/how-yahoo-allowed-hackers-to-hijack-my-neighbors-e-mail-account/
Malicious Chrome extensions: a cat and mouse game
https://www.securelist.com/en/blog/208194095/Malicious_Chrome_extensions_a_cat_and_mouse_game
Managing Your Mobile Privacy
http://blog.trendmicro.com/trendlabs-security-intelligence/managing-your-mobile-privacy/
Malicious ‘Facebook Account Cancellation Request” themed emails serve client-side exploits and malware
http://blog.webroot.com/2013/01/31/malicious-facebook-account-cancellation-request-themed-emails-serve-client-side-exploits-and-malware/
A peek inside a DIY password stealing malware
http://blog.webroot.com/2013/01/30/a-peek-inside-a-diy-password-stealing-malware/
Wednesday, January 30, 2013
Fake ‘FedEx Online Billing – Invoice Prepared to be Paid’ themed emails lead to Black Hole Exploit Kit
http://blog.webroot.com/2013/01/29/fake-fedex-online-billing-invoice-prepared-to-be-paid-themed-emails-lead-to-black-hole-exploit-kit/
Free Windows 8 Activator? Think Again
http://blog.trendmicro.com/trendlabs-security-intelligence/free-windows-8-activator-think-again/
God horses are floating clouds: The story of a Chinese banker Trojan
https://www.securelist.com/en/blog/798/God_horses_are_floating_clouds_The_story_of_a_Chinese_banker_Trojan
Database leaked from Network of Chamber of Commerce
http://www.cyberwarnews.info/2013/01/29/database-leaked-from-network-of-chamber-of-commerce/
http://pastebin.com/gA07DYE3
Tuesday, January 29, 2013
Security Flaws in Universal Plug and Play: Unplug, Don't Play
https://community.rapid7.com/community/infosec/blog/2013/01/29/security-flaws-in-universal-plug-and-play-unplug-dont-play
nCircle patches PureCloud vulnerability scanner on Vulnerability-Lab report
http://thehackernews.com/2013/01/ncircle-patches-purecloud-vulnerability.html
Installing Nagios 3.4.4 On CentOS 6.3
http://www.howtoforge.com/installing-nagios-3.4.4-on-centos-6.3
PokerAgent botnet stealing over 16,000 Facebook credentials
http://blog.eset.com/2013/01/29/pokeragent-stealing-over-16000-facebook-credentials
Your Apple Mac made even safer: Part 3 of securing new devices
http://blog.eset.com/2013/01/28/your-apple-mac-made-safer-securing-new-digital-devices-part-3
700,000 Accounts leaked for Project Sun Rise – Heart of Africa
http://www.cyberwarnews.info/2013/01/29/700000-accounts-leaked-for-project-sun-rise-heart-of-africa/
http://pastebin.com/8fJbajpc
Monday, January 28, 2013
New bullets (CVE-2012-0775 - CVE-2012-1889 - CVE-2012-1876(?) - CVE-2012-4792 ) in "Cool EK" Weapon
http://malware.dontneedcoffee.com/2013/01/news-bullets-cve-2012-0775-cve-2012.html
Anonymous Releases ‘Warhead’ via #OpLastResort
http://blogs.mcafee.com/cto/anonymous-releases-warhead-via-oplastresort
Monday review - the hot 24 stories of the week
http://nakedsecurity.sophos.com/2013/01/28/monday-review-the-hot-24-stories-of-the-week-2/
PimpMyWindow - Brazilian adware
https://www.securelist.com/en/blog/208194071/PimpMyWindow_Brazilian_adware
10th Anniversary of the Slammer Worm
http://www.f-secure.com/weblog/archives/00002491.html
http://www.f-secure.com/v-descs/mssqlm.shtml
Android Malware Found to Send Remote Commands
http://blog.trendmicro.com/trendlabs-security-intelligence/android-malware-found-to-send-remote-commands/
Bogus ‘Your Paypal Transaction Confirmation’ themed emails lead to Black Hole Exploit Kit
http://blog.webroot.com/2013/01/28/bogus-your-paypal-transaction-confirmation-themed-emails-lead-to-black-hole-exploit-kit/
Friday, January 25, 2013
Inside the Gozi Bulletproof Hosting Facility
http://krebsonsecurity.com/2013/01/inside-the-gozi-bulletproof-hosting-facility/
Creating a DDoS Protection Plan
http://blog.rivalhost.com/creating-a-ddos-protection-plan/
How (Bad) Spiders and Bots Inflate Google Analytics
http://blog.rivalhost.com/how-bad-spiders-and-bots-inflate-google-analytics/
Turkmenistan Gmail, Microsoft, Youtube Domains Defaced
http://thehackernews.com/2013/01/turkmenistan-gmail-microsoft-youtube.html
Facebook Users Vulnerable to Scammers’ Graph Search Abuse
http://www.hotforsecurity.com/blog/facebook-users-vulnerable-to-scammers-graph-search-abuse-5126.html
Gozi Malware Creators Charged in the US; the Russian Faces 95 years in Prison
http://www.hotforsecurity.com/blog/gozi-malware-creators-charged-in-the-us-the-russian-faces-95-years-in-prison-5121.html
The Public whip hacked, 90,000 Credentials Leaked
http://www.cyberwarnews.info/2013/01/25/the-public-whip-hacked-90000-credentials-leaked/
http://www.dwg.wehate.asia/publicwhip.txt
Secret backdoors found in firewall, VPN gear from Barracuda Networks
http://arstechnica.com/security/2013/01/secret-backdoors-found-in-firewall-vpn-gear-from-barracuda-networks/
Hundreds of SSH Private Keys exposed via GitHub Search
http://thehackernews.com/2013/01/hundreds-of-ssh-private-keys-exposed.html
Over 9000! Credentials leaked from Mobilephonetrace.com
http://www.cyberwarnews.info/2013/01/25/over-9000-credentials-leaked-from-mobilephonetrace-com/
http://www.anonpaste.me/anonpaste2/index.php?605af5426042b9ed#XcBcJFnEvHek+hMOnmnZP0ptGzn26bwDmFhQx+lvElY=
Official Renault Argentina Hacked, 37,000 Account Credentials Leaked
http://www.cyberwarnews.info/2013/01/25/official-renault-argentina-hacked-37000-account-credentials-leaked/
https://www.dropbox.com/s/iojk0a1ft5i3k4g/Leak%20Renault%20AR%20Turkishajan.com.rar
Fake LinkedIn ‘Invitation Notifications’ themed emails lead to client-side exploits and malware
http://blog.webroot.com/2013/01/24/fake-linkedin-invitation-notifications-themed-emails-lead-to-client-side-exploits-and-malware/
Linux/SSHDoor.A Backdoored SSH daemon that steals passwords
http://blog.eset.com/2013/01/24/linux-sshdoor-a-backdoored-ssh-daemon-that-steals-passwords
Wednesday, January 23, 2013
Tracking Wireless SSIDs Using Nessus
http://blog.tenablesecurity.com/2013/01/tracking-wireless-ssids-using-nessus.html
Deobfuscating Potentially Malicious URLs - Part 1 Solution
http://blog.opensecurityresearch.com/2013/01/deobfuscating-potentially-malicious.html
Downloader Targets Down Under
http://www.symantec.com/connect/blogs/downloader-targets-down-under
Android malware spreads through compromised legitimate Web sites
http://blog.webroot.com/2013/01/22/android-malware-spreads-through-compromised-legitimate-web-sites/
First Firefox phones revealed by Mozilla and Geeksphone
http://www.bbc.co.uk/news/technology-21159531
2012 Annual Security Roundup: Post-PC Threats
http://blog.trendmicro.com/trendlabs-security-intelligence/2012-annual-security-roundup/
Fake Versions of Temple Run 2 Sprint Their Way to Users
http://blog.trendmicro.com/trendlabs-security-intelligence/fake-versions-of-temple-run-2-sprint-their-way-to-users/
100 Best Companies to Work For
http://money.cnn.com/magazines/fortune/best-companies/2013/snapshots/1.html?iid=F_F500M
Tuesday, January 22, 2013
BackTrack Reborn – Kali Linux
http://www.offensive-security.com/offsec/backtrack-reborn-kali-linux/
http://www.backtrack-linux.org/backtrack/kali-a-teaser-into-the-future/
http://vimeo.com/57742213
Year 2038 problem
http://www.f-secure.com/weblog/archives/00002489.html
http://en.wikipedia.org/wiki/Year_2038_problem
Newer Posts
Older Posts
Home
Subscribe to:
Posts (Atom)
