Thursday, February 5, 2009

Around The Horn vol.1,32


Security News

12:30 PM (9 hours ago)
Attacker flaunts details of phpBB hack

from CGISecurity - Website and Application Security News by Robert A.
"In a post on Blogger on Saturday, a person who claims to have breached the Web site of open-source online community software phpBB gave a detailed account of how he did it. Using a vulnerability in PHPlist publicly disclosed on January 14, the attacker gained access to the password and configuration...

1:30 PM (8 hours ago)
Firefox 3.0.6 Released To Address Multiple Security Issues

from CGISecurity - Website and Application Security News by Robert A.
Fixed in Firefox 3.0.6 MFSA 2009-06 Directives to not cache pages ignored MFSA 2009-05 XMLHttpRequest allows reading HTTPOnly cookies MFSA 2009-04 Chrome privilege escalation via local .desktop files MFSA 2009-03 Local file stealing with SessionStore MFSA 2009-02 XSS using a chrome XBL method and window.eval MFSA 2009-01 Crashes with evidence of...

9:31 AM (12 hours ago)
Counting Malware

from McAfee Avert Labs by Marius van Oers
Malware continues to increase at a rapid rate. With the DAT-5516 release, scheduled for 4 February, the number of drivers in the DATs will pass 500,000. Half a million is a huge amount. I remember my first antivirus program, back in the ’80s, that had a count of about 80. I don’t recall the exact number, but it’s easy to place it into perspective. We add way more on a daily basis now.

11:33 AM (10 hours ago)
FlowMatrix - Free Network Behavior Analysis System

from Darknet - The Darkside by Darknet
FlowMatrix is Network Anomaly Detection and Network Behavioral Analysis (NBA) System, which in fully automatic mode constantly monitors your network using NetFlow records from your routers and other network devices in order to identify relevant anomalous security and network events. In addition, the new release of FlowMatrix, (ver.0.9.62 and...Read the full post at darknet.org.uk

3:03 PM (7 hours ago)
Four Security Updates Due From Microsoft Next Week

from PC World Latest Technology News
Microsoft will release critical security patches for IE and Exchange next week and important fixes for SQL Server and Visio.

3:03 PM (7 hours ago)
Microsoft Changes Windows 7 UAC Due to New Exploit Code

from PC World Latest Technology News
A pair of Windows bloggers posted more proof-of-concept code that subverts an important security feature of Windows 7.

6:41 AM (2 hours ago)
MS lines up two critical updates for Patch Tuesday

from The Register - Security
Security gnomes busy on IE
Microsoft is lining up four security updates - two of which earn the dread rating of critical - for the February edition on its regular monthly Patch Tuesday update cycle.…

8:41 AM (14 minutes ago)
Cisco wireless flaws pose DoS risk

from The Register - Security
Wi-Fi kit found wanting
Cisco is urging admins to update their wireless LAN hardware following the discovery of multiple vulnerabilities in its enterprise Wi-Fi kit.…

No comments:

Post a Comment

My Blog List