|
DSA-2103 smbind
Debian Security
sql injection
Germany to launch antibotnet program for consumers
Hack In The Box
Germany will soon launch a service to help consumers remove malicious software from their computers in an attempt to stem the spread of spam-sending botnets.
The German Anti-Botnet Initiative, which has a budget of 2 million (US$2.7 million), is being fu
Quantum key distribution in superposition of "insecure" and "unneeded"
Hack In The Box
It's apparent that the physics lexicon has been dragged kicking and screaming out of the 19th century with a recent paper published in Nature Photonics titled "Hacking commercial quantum cryptography systems by tailored bright illumination." I never thoug
Hacker attacks raise cyber security concerns in Philippines
Hack In The Box
The vulnerability of the Philippines government web sites was again exposed by hackers last week, prompting renewed calls for the introduction of an updated Cybercrime Bill which has been on the legislative backburner for a decade.
Ivan Uy, the recently
Hackers Give Sony Two Finger Salute After PS3 Ban Granted
Hack In The Box
Despite being granted a permanent ban on the sale of a PSJailbreak "dongle" Sony Computer Entertainment have been given a two finger salute by hackers who have now released the software for free on the Internet as PS Groove.
The ban which was granted on
Armin van Buuren's credit card details for sale
Hack In The Box
Armin Van Buuren is one of the world's most well-known trance music DJs. He also apparently has had his credit card details stolen.
Investigators with Ultrascan, a company that investigates credit card fraud and other kinds of online crime, were doing re
Apple had two months to fix critical QuickTime bug, says researcher
Hack In The Box
A critical bug in QuickTime was reported to Apple two months before a second researcher independently revealed the vulnerability this week, the director of a bug bounty program said today.
The duplicate discovery was just one of an increasing number of o
U.N. exec: Cyberwar could be 'worse than tsunami'
Hack In The Box
International cyberwar would be "worse than a tsunami" and should be averted by a global cybersecurity peace treaty, according to the head of the International Telecommunication Union.
Hamadoun Tour, who has been secretary-general of the U.N. agency sinc
Sun Tzu's 13 lessons to combat hackers
Hack In The Box
In January, it was discovered that more than 75,000 computer systems in 2500 companies around the world were hacked in one of the largest and most sophisticated attacks by cyber criminals. And a month later we saw the Australian Parliament website shutter
Samsung Galaxy Tab Rooted... A Month Before Release
Hack In The Box
The folks at Sera-Apps, a German group of Android developers, have not only managed to get their hands on a prototype of the Samsung Galaxy Tab a month before the device goes on sale, but they managed to root the device at IFA, the worlds largest consumer
Security flaw found in HP Printers
Hack In The Box
Web servers have become commonplace on just about every hardware device from printers to switches. Such an addition makes sense as all devices require a management interface and making that interface web accessible is certainly more user friendly than req
PS3 jailbreak adapted to Nokia N900, Palm Pre
Hack In The Box
Two weeks ago you'd have to pay an Australian importer for a specialized USB key. Four days ago open-source software let you roll your own. Today, there's no need for any of that -- you can hack your PS3 with a tethered smartphone. Working closely with th
Mark Hurd may take job at Oracle, report says
Hack In The Box
When Mark Hurd resigned unexpectedly from Hewlett-Packard last month he found an outspoken supporter in the form of Oracle CEO Larry Ellison. It appears now that Hurd may end up working for Ellison, according to a report Saturday in the Wall Street Journa
Music execs gunning for Android iTunes rival
Hack In The Box
If you don't like Apple's arrogant presence and its mindset that being its customer is a privilege, you're not alone. Music companies are very eager to get on Google's side as it seems more likely that a new service will launch on Android.
In a Los Angel
Accidental Pirate tightens disclosure rule
Hack In The Box
The pro-copyright lobby group behind the Accidental Pirate website has changed a legal clause that allowed it to disclose the personal information of users to any third party.
iTnews reported earlier this week that the clause had raised suspicions that t
Malaysian web crackdown
Hack In The Box
Malaysia has formed a taskforce to scour the internet for blog postings deemed harmful to national unity, in the latest action against new media.
The Home Ministry's deputy secretary-general for security, Abdul Rahim Mohamad Radzi, said the unit would in
Microsoft Claims Silverlight Beats HTML5
Hack In The Box
While acknowledging the importance of HTML5, Microsoft stressed this week that its Silverlight rich Internet technology extends the Web beyond what HTML5 allows.
Standards-based multimedia features offered by HTML5 have taken the spotlight lately from pr
TSA accidentally reveals airport security secrets
Hack In The Box
The Transportation Security Administration inadvertently revealed closely guarded secrets related to airport passenger screening practices when it posted online this spring a document as part of a contract solicitation, the agency confirmed Tuesday.
The
Nasty Data-Stealing Bug Haunts Internet Explorer 8
Hack In The Box
There's an unpatched vulnerability in Internet Explorer 8 that enables simple data-stealing attacks by Web-based attackers and could lead to an attacker hijacking a user's authenticated session on a third-party site. The flaw, which a researcher said may
HP-UX Security patch : PHCO_41200
Nessus.org Plugins
Synopsis :
The remote host is missing HP-UX PHCO_41200 security update
Description :
Software Distributor Cumulative Patch
Solution :
HP-UX Security patch : PHCO_41201
Nessus.org Plugins
Synopsis :
The remote host is missing HP-UX PHCO_41201 security update
Description :
Software Distributor Cumulative Patch
Solution :
HP-UX Security patch : PHCO_41202
Nessus.org Plugins
Synopsis :
The remote host is missing HP-UX PHCO_41202 security update
Description :
11.31 Software Distributor Cumulative Patch
Solution :
Debian Security Advisory - New smbind packages fix sql injection (DSA-2103-1)
Help Net Security - Advisories
- ------------------------------------------------------------------------
Debian Security Advisory DSA-2103-1 security@debian.org
http://www.debian.org/security/ ...
US Department of Defense and National Policy, (Sun, Sep 5th)
SANS Internet Storm Center, InfoCON: green
A recent article released by the US Department of Defense (DoD) spoke of the worst compromise in DoD ...(more)...
Vigil@nce - IIS: authentication bypass via Index_Allocation
Vigil@nce - public vulnerabilities
An attacker can use an Alternate Data Stream, in order to access to files located in a directory protected by an IIS authentication.
Google pays $8.5m to settle Buzz privacy invasion suit
The Register - Security
The price of a Tweetbookish Gmail mod
Google has agreed to pay $8.5 million to settle a class action lawsuit claiming it violated the privacy of Gmail users when it released Google Buzz, a Gmail bolt-on that turned the email service into a Twe
[DSA2102] DSA-2102-1 barnowl
Nessus.org Plugins
Synopsis :
The remote host is missing the DSA-2102 security update
Description :
It has been discovered that in barnowl, a curses-based instant-messaging
client, the return codes of calls to the ZPending and ZR
Fedora 12 2010-12847
Nessus.org Plugins
Synopsis :
The remote host is missing the patch for the advisory FEDORA-2010-12847.
Description :
Small Footprint CIM Broker (sfcb) is a CIM server conforming to the
CIM Operations over HTTP protocol.
It
Fedora 13 2010-13127
Nessus.org Plugins
Synopsis :
The remote host is missing the patch for the advisory FEDORA-2010-13127.
Description :
This module is aimed at environments with central file servers that a
user wishes to mount on login and unmount
Fedora 12 2010-13155
Nessus.org Plugins
Synopsis :
The remote host is missing the patch for the advisory FEDORA-2010-13155.
Description :
A library for:
- rbtree with key-value pair extension
- deques (double-ended queues) (Stacks (LIFO) / Queu
Fedora 13 2010-13388
Nessus.org Plugins
Synopsis :
The remote host is missing the patch for the advisory FEDORA-2010-13388.
Description :
Python 3 is a new version of the language that is incompatible with the 2.x
line of releases. The language is mo
FreeBSD : lftp -- multiple HTTP client download filename vulnerability (5303)
Nessus.org Plugins
Synopsis :
The remote host is missing a security update
Description :
The following package needs to be updated: lftp
See also :
FreeBSD : wget -- multiple HTTP client download filename vulnerability (5304)
Nessus.org Plugins
Synopsis :
The remote host is missing a security update
Description :
The following package needs to be updated: wget-devel
See also :
Device Information (devinfo.xml)
Nessus.org Plugins
Synopsis :
The remote web server provides device information.
Description :
It was possible to download the file 'devinfo.xml' from the remote
web server.
This file is intended to be read by a set
Investigating Malicious Website Reports, (Sat, Sep 4th)
SANS Internet Storm Center, InfoCON: green
This morning we received a report from Holger about a website that was triggering ale ...(more)...
What's not to Like about "Like?", (Sat, Sep 4th)
SANS Internet Storm Center, InfoCON: green
Get off of my lawn!
I admidt that I have a suspicous, curmedgeonly strea ...(more)...
Internet Explorer 8 kwetsbaar voor DLL-kapers
Security.NL nieuws
Hackers hebben een exploit voor Internet Explorer 8 online gezet, waarmee het mogelijk is om kwaadaardige code op systemen uit te voeren.
Nederland belangrijkste doelwit Roemeense skimmers
Security.NL nieuws
Nederland is het belangrijkste doelwit van Oost-Europese skimmers geworden, die op grote schaal pinpassen kopiren.
Afgesloten botnet bevat 78GB aan e-mailadressen
Security.NL nieuws
Het Pusdo-botnet dat vorig week kortstondig werd afgesloten, bevatte 78GB aan e-mailadressen, zo hebben onderzoekers ontdekt.
Google vereenvoudigt privacybeleid
Security.NL nieuws
Het privacybeleid van Google is voor de meeste mensen te lastig om te begrijpen, daarom gaat de zoekgigant verschillende aanpassingen doorvoeren.
Nigeriaanse 419 scammer krijgt 12,5 jaar cel
Security.NL nieuws
Een Nigeriaanse man die internetgebruikers voor 1 miljoen euro oplichtte, is in de Verenigde Staten tot een gevangenisstraf van 12,5 jaar veroordeeld.
"Einde bankafschrift goed nieuws voor malware"
Security.NL nieuws
Het verdwijnen van het papieren bankafschrift is goed nieuws voor virusschrijvers, dat zegt Righard Zwienenberg van anti-virusbedrijf Norman tegenover Security.nl.
HCCnet.nl op blacklist door gehackte gebruiker
Security.NL nieuws
Door de acties van een gehackte gebruiker is de website home.hccnet.nl op zowel de blacklist van Norton als Firefox terechtgekomen.
Microsoft Tool 'Hardens' Mission Critical Apps
InternetNews.com Security News
The new Enhanced Mitigation Experience Toolkit 2.0 is designed to head off potential security threats.
 DSA-2102 barnowl
Debian Security
unchecked return value
| 
