Sunday, February 8, 2009

Around The Horn vol.1,34

Alerts

Feb 7, 2009 (14 hours ago)
SPAM with a large Word file on the side, (Sat, Feb 7th)

from SANS Internet Storm Center, InfoCON: green
Scott has provided us with a new piece of SPAM with the subject Offshore Banking Investm ...(more)...

Feb 7, 2009 (15 hours ago)
.gif Files Presenting a Not so Pretty Picture, (Sat, Feb 7th)

from SANS Internet Storm Center, InfoCON: green
A Storm Center subscriber has just submitted malware embedded in .gif image files, downloaded from t ...(more)...

Security News

11:10 PM (8 hours ago)
PHP filesystem attack vectors

from CGISecurity - Website and Application Security News by Robert A.
ascii writes"On Apr 07, 2008 I spoke with Kuza55 and Wisec about an attack I found some time before that was a new attack vector for filesystem functions (fopen, (includerequire)[_once]?, file_(putget)_contents, etc) for the PHP language. It was a path normalization issue and I asked them to keep it “secret” [4],...

11:10 PM (8 hours ago)
Revising netflix's CSRF

from CGISecurity - Website and Application Security News by Robert A.
Dave Ferguson writes"Back in 2006, I put out some findings about CSRF on Netflix's web site. I thought people might be interested to know that I revisited the issue recently and was shocked to find Netflixstill hasn't fixed all their CSRF issues, at least when it comes to movie queues. You...

4:33 AM (3 hours ago)
Kaspersky breach exposes sensitive database, hacker claims

from The Register - Security
SQL injection said to strike deep
A security lapse at Kaspersky has exposed a wealth of proprietary information about the anti-virus provider's products and customers, according to a blogger, who posted screen shots and other details that appeared to substantiate the claims.…

Feb 7, 2009 (15 hours ago)
OpenDNS rolls out Conficker tracking, blocking

from The Register - Security
Downadup on notice
With an estimated 10 million PCs infected by the stealthy worm known as Conficker, it's a good bet that plenty of administrators are blissfully unaware that their networks are playing host to the pest. Now, a free service called OpenDNS is offering a new feature designed to alert administrators to the damage and help them contain it.…

Feb 7, 2009 (19 hours ago)
Spam Jumps in January, Study Says

from PC World Latest Technology News
MessageLabs reports that global Internet spam levels increased 4.9 percent in January.
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

My Blog List