Threat Outbreak Alert: Fake Fax Message Delivery Notification E-mail Messages
DescriptionCisco Security Intelligence Operations has detected significant activity related to spam e-mail messages that claim to contain a fax message for the recipient. The text in the e-mail message...
View ArticleKaspersky Lab report: Evaluating the threat level of software vulnerabilities
OverviewVulnerable programs are among the most commonplace ways to attack victims and steal personal data. Exploits, pieces of malicious code that utilize vulnerabilities in popular software to infect...
View ArticleHP execs debate reality of hacker expertise; lament most businesses don't...
Summary: Hewlett-Packard execs argue that the problem with the security culture today is that many businesses are still following a "check box" approach without understanding hackers' resources and...
View ArticleJoomla 1.5.x Multi Component SQL Injector Exploit
#Exploit Title: Joomla 1.5.x Multi Component SQL Injector ()#Exploit Author: D35m0nd142#Date: 28/01/2013#Google Dork: inurl:"com_..."#!/usr/bin/perluse IO::Socket::INET;use...
View Articlean app that runs on a mobile device (a smartphone) is designed to infect PCs.
Users of inexpensive Android smartphones typically look for ways to accelerate their devices, for example, by freeing up memory. Demand for software that makes smartphones work a little faster creates...
View ArticleThe State of Blackhole Spam
he past few months have been a busy one for Blackhole spam attackers. The last time we discussed Blackhole spam runs, we noted that it had returned from its New Year break and was hitting users again....
View ArticleClik here to view.
Don’t type this phrase on your Mac unless you like crashing it: ‘File:///’
A pretty crazy bug report was filed with Apple on Thursday afternoon. According to a copy of the bugon Open Radar, all you have to do is type the text below into almost any window in any app on OS X to...
View ArticleWordpress plugins ForumConverter SQLi Vulnerability
########################################### Exploit Title: Wordpress plugins ForumConverter SQL Injection Vulnerability# Date: 2013-02-01# Author: DaOne aka Mocking Bird# Software Link:...
View ArticleTwitter Sends Out Emails To 250K Users Who ‘May’ Have Been Compromised, Says...
Twitter is sending out emails to 250,000 users it says may have had their accounts compromised in the last week as the site experienced “unusual access patterns that led to us identifying unauthorized...
View Article[SECURITY] [DSA 2617-1] samba security update
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1- -------------------------------------------------------------------------Debian Security Advisory DSA-2617-1...
View Article[SECURITY] [DSA 2614-1] libupnp security update
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-2614-1...
View Article[SECURITY] [DSA 2615-1] libupnp4 security update
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-2615-1...
View ArticleMauritania XSS Vulnerability
Mauritania SecurityDomain: http://www.mauritania-sec.com/Vulnerability: XSS (Cross Site Scripting)Proof of Image: http://i.imgur.com/9rLAA4U.jpgGo to http://www.mauritania-sec.com/in the Search Box...
View ArticleAdditional XML Security Uniform Resource Identifiers (URIs)
Abstract This document expands and updates the list of URIs specified in RFC 4051 and intended for use with XML Digital Signatures, Encryption, Canonicalization, and Key Management. These URIs...
View ArticleChinese hackers suspected in attack on The Washington Post’s computers
A sophisticated cyberattack targeted The Washington Post in an operation that resembled intrusions against other major American news organizations and that company officials suspect was the work of...
View ArticleArrowChat 1.5.61 Cross Site Scripting / Local File Inclusion
# Exploit Title: ArrowChat <=~ 1.5.61 Multiple vulnerabilities# Date: 01/01/2013# Exploit Author: Kallimero# Vendor Homepage: http://www.sitexcms.org/# Version: 1.5.61, before, and maybe 1.6#...
View ArticleAdaptCMS 2.0.4 SQLi Vulnerability
# Exploit Title: AdaptCMS <= 2.0.4 SQL Injection vulnerability# Date: 26/10/2012# Exploit Author: Kallimero# Vendor Homepage: http://www.adaptcms.com/# Software Link:...
View ArticleIpod Touch Full JailBreak guide for WINDOWS
THIS IS FOR WINDOWS!Hey all, I take NO CREDIT for this guide, i followed it on the #itouch irc channel from the amazing PlanetBeing! Enjoy!--RESTORE IPOD FIRST then download iphuc...
View Articlenew scripts/modules/exploits added to Nmap, OpenVAS, Metasploit, and Nessus...
This report describes any new scripts/modules/exploits added to Nmap,OpenVAS, Metasploit, and Nessus since yesterday.== OpenVAS plugins (1) ==r15352...
View ArticleTRENDMICRO ALERT OF BKDR_KULUOZ ATTACHMENT
On a daily bases we are finding new ways that are used by malicious users to spread their malwares. TrendMicro issued a new blog entry for another malicious campaign that is promoting BKDR_KULUOZ.PFG a...
View Article