[RHSA-2013:0531-01] Critical: java-1.6.0-sun security update
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1===================================================================== Red Hat Security AdvisorySynopsis: Critical: java-1.6.0-sun...
View Article[RHSA-2013:0532-01] Critical: java-1.7.0-oracle security update
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1===================================================================== Red Hat Security AdvisorySynopsis: Critical:...
View Article[RHSA-2013:0533-01] Important: JBoss Enterprise SOA Platform 5.3.1 update
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1===================================================================== Red Hat Security AdvisorySynopsis: Important: JBoss...
View ArticleThreat Outbreak Alert: Fake Airline Ticket Credit Card Processing E-mail...
DescriptionCisco Security Intelligence Operations has detected significant activity related to spam e-mail messages that claim to contain an airline ticket purchase notification for the recipient. The...
View ArticleThreat Outbreak Alert: Fake CashPro Online Digital Certificate Notification...
DescriptionCisco Security Intelligence Operations has detected significant activity related to spam e-mail messages that claim to contain a new digital certificate from the Bank of America CashPro...
View ArticleThreat Outbreak Alert: Fake E*TRADE Tax Document Notification E-mail Messages
DescriptionCisco Security Intelligence Operations has detected significant activity related to spam e-mail messages that claim to contain a tax document from E*Trade Financial for the recipient. The...
View ArticleImperva CEO, Shlomo Kramer, on Future of Security Market
Shlomo Kramer — I first interviewed him in June 2012 – is one of the world’s greatest information security entrepreneurs. He has helped found three leading companies in that market — Check Point...
View ArticleThreat Outbreak Alert: Fake Delay Payment Notification E-mail Messages
DescriptionCisco Security Intelligence Operations has detected significant activity related to spam e-mail messages that claim to contain a delayed payment notification for the recipient. The text in...
View ArticleThreat Outbreak Alert: Fake Bank Money Deposit Notification E-mail Messages
DescriptionCisco Security Intelligence Operations has detected significant activity related to spam e-mail messages that claim to contain a a bank money deposit notification for the recipient. The text...
View ArticleCert Polska Just Released- Takeover of Virut domains
1 Executive summaryAt the end of January and the beginning of February 2013 NASK (Research and AcademicComputer Network) { the .pl ccTLD Registry { and its security team CERT Polskatook over 43 .pl...
View ArticlePCI Council Offers Clarity On Cloud, Mobile Issues
Two new documents released by the council offer guidance on merchant responsibility for cardholder data stored in the cloud, as well as data processed through mobile point-of-sale devicesThe PCI...
View ArticleCVE-2013-0641, analysis of Acrobat Reader sandbox escape
沙盒lpc channel函数调用w系列函数buffer和size不一致性漏洞by instruder and binjo of code audit labs of vulnhunt.comAcrobat Reader自从引入沙盒功能以来,针对其的漏洞攻击就急剧减少,表明沙盒对攻击门槛的提高帮助不少。门槛提升不代表无法攻击,最近流传的通过spear...
View ArticleUS-CERT Current Activity - Updated Release of the February 2013 Oracle Java...
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1National Cyber Awareness SystemUS-CERT Current ActivityUpdated Release of the February 2013 Oracle Java SE Critical Patch UpdateOriginal release date:...
View ArticleTeamSHATTER Security Advisory: SQL Injection in Oracle Alter FBA Table...
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1TeamSHATTER Security AdvisorySQL Injection in Oracle Alter FBA TableFebruary 20, 2013Risk Level:HighAffected versions:Oracle Database Enterprise Edition...
View ArticleTeamSHATTER Security Advisory: Oracle 11g Stealth Password Cracking...
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1TeamSHATTER Security AdvisoryOracle 11g Stealth Password Cracking VulnerabilityFebruary 20, 2013Risk Level:HighAffected versions:Oracle Database Server...
View ArticleFacebook OAuth flaw allows gaining full control over any Facebook account
Facebook OAuth is used to communicate between Applications & Facebook users, to grant additional permissions to your favorite apps. To make this possible, users have to 'allow or accept' the...
View Articlenew scripts/modules/exploits added to Nmap, OpenVAS, Metasploit, and Nessus...
This report describes any new scripts/modules/exploits added to Nmap,OpenVAS, Metasploit, and Nessus since yesterday.== Nessus plugins (85) ==64787...
View ArticleUS-CERT Current Activity - Adobe Releases Security Updates for Adobe Reader...
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1National Cyber Awareness SystemUS-CERT Current ActivityAdobe Releases Security Updates for Adobe Reader and AcrobatOriginal release date: February 14,...
View ArticleownCloud Security Advisories (2013-003, 2013-004, 2013-005, 2013-006, 2013-007)
# Multiple XSS vulnerabilities (oC-SA-2013-003)Web: http://owncloud.org/about/security/advisories/oC-SA-2013-003/## CVE IDENTIFIERS- CVE-2013-0297, CVE-2013-0307 (4.0 & 4.5)- CVE-2013-0298 (4.5)##...
View ArticleMore Multiple Red Hat Advisories: [RHSA-2013:0550-01] Moderate: bind,...
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1===================================================================== Red Hat Security AdvisorySynopsis: Moderate: bind security...
View Article