Alerts
SB09-047: Vulnerability Summary for the Week of February 9, 2009
from US-CERT Cyber Security Bulletins
Vulnerability Summary for the Week of February 9, 2009
1:20 PM (6 hours ago)
Internet Routing Issues, (Mon, Feb 16th)
from SANS Internet Storm Center, InfoCON: green
Several readers have reported difficulty in reaching parts of the Internet today. The source o ...(more)...
10:04 PM (8 hours ago)
McAfee 2009 Mobile Security Report, (Tue, Feb 17th)
from SANS Internet Storm Center, InfoCON: green
We received notice of the 2009 McAfee Mobile Security Report today from our fellow SANS collegues, s ...(more)...
Security News
12:28 PM (7 hours ago)
Obama's BlackBerry still hackable, warns Mitnick
from The Register - Security
You'd be a nut to try and crack it
President Obama's 'bullet-proof' BlackBerry might still be cracked, according to uber-hacker Kevin Mitnick.…
2:29 PM (5 hours ago)
Hackers: BitDefender site exposes private data (yet again)
from The Register - Security
Second time in seven days
Updated Romanian hackers have discovered a security flaw in the website of anti-virus provider BitDefender. They said it was the second time in a week the company has inadvertently exposed a database that is supposed to remain private.…
12:21 AM (6 hours ago)
DShield Web Honeypot - Alpha Preview Release, (Tue, Feb 17th)
from SANS Internet Storm Center, InfoCON: green
The attack dynamics had significantly changed since DShield went into service 8 years ago. Web attac ...(more)...
9:03 PM (9 hours ago)
MS09-002 - Critical: Cumulative Security Update for Internet Explorer (961260) - Version:1.1
from Microsoft Security Content: Comprehensive Edition
Severity Rating: Critical - Revision Note: V1.1 (February 16, 2009): Added a link to Microsoft Knowledge Base Article 961260 under Known Issues in the Executive Summary.Summary: This security update resolves two privately reported vulnerabilities. The vulnerabilities could allow remote code execution if a user views a specially crafted Web page using Internet Explorer. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
6:32 AM (8 minutes ago)
UK childcare voucher site offline after security snafu
from The Register - Security
Busy Bees stung by breach
A UK childcare voucher scheme has admitted that confidential customer data was briefly left exposed to other users during an upgrade last week, but denied suggestions that any sensitive information leaked as a result.…
12:30 AM (6 hours ago)
Satellite-hacking boffin sees the unseeable
from The Register - Security
Lady Di gossip plucked from sky
White-hat hacker Adam Laurie knows better than to think email, video-on-demand, and other content from Sky Broadcasting and other satellite TV providers is a private matter between him and the company. That's because he's spent the past decade monitoring satellite feeds and the vast amount of private information they leak to anyone with a dish.…
11:30 PM (7 hours ago)
MySQL daddy juices Finnish security firm
from The Register - Security
Wot? A SQL injection of cash?
MySQL creator Michael "Monty" Widenius is injecting some venture capital and executive experience into a Finnish firm that makes a community-driven security add-on for browsers.…
5:02 AM (1 hour ago)
NSA Together With Mitre CWE and SANS Identifies Top 25 Programming Errors
from Darknet - The Darkside by Darknet
Secure programming is a huge issue and it’s the lack of it that causes all the problems we have with vulnerabilities and the exploits associated with them. If everywhere developers followed secure programming practices we wouldn’t have buffer overflow issues or unsanitized parameters leading to SQL Injection. The NSA (National Security...
-- Aurora Report says well it has been a relatively quiet few days and we hope we are not missing anything. For now we are content to enjoy the relative solace the quietude embues. We made several changes to the blog today so we'll see how it goes over.
-- Updated 2/17/2009 still pretty quite on the western front added 6 security interest pieces 1 sorta new alert.
Subscribe to:
Post Comments (Atom)
My Blog List
-
-
China, Iran are having a field day with React2Shell, Google warns - Who hasn't exploited this max-severity flaw? At least five more Chinese spy crews, Iran-linked goons, and financially motivated criminals are now attackin...6 hours ago
-
Microsoft Patch Tuesday, December 2025 Edition - Microsoft today pushed updates to fix at least 56 security flaws in its Windows operating systems and supported software. This final Patch Tuesday of 2025 ...6 days ago
-
We have achieved FreeBSD 15.0-REL with KDE Plasma - Houston, we have installed #FreeBSD 15.0-REL with KDE Plasma 6.4.5 on a Lenovo ThinkPad X1 Carbon Gen 6 laptop. I have come full circle. I used to dail...
2 weeks ago -
Systemic Ransomware Events in 2025 – How Jaguar Land Rover Showed What a Category 3 Supply Chain Breach Looks Like - Systemic ransomware events in 2025, how Jaguar Land Rover’s shutdown exposed Category 3 supply chain risk, with lessons from Toyota, Nissan and Ferrari.2 weeks ago
-
Today's NYT Mini Crossword Answers for Tuesday, Oct. 7 - Here are the answers for The New York Times Mini Crossword for Oct. 7.
2 months ago -
Today's NYT Mini Crossword Answers for Tuesday, Oct. 7 - Here are the answers for The New York Times Mini Crossword for Oct. 7.
2 months ago
-
Announcing SecTemplates.com release #6: Security Partner Program Pack v1 - I have built several security partner programs at companies such as Box Inc. and Coinbase, with over 8 years of experience leading them. I have consistentl...6 months ago
-
Anybody knows that this URL is about? Maybe Balena API request?, (Wed, Feb 7th) - Yesterday, I noticed a new URL in our honeypots: /v5/device/heartbeat. But I have no idea what this URL may be associated with. Based on some googleing, I ...1 year ago
-
Comic for March 12, 2023 - Dilbert readers - Please visit Dilbert.com to read this feature. Due to changes with our feeds, we are now making this RSS feed a link to Dilbert.com.2 years ago
-
87% of Container Images in Production Have Critical or High-Severity Vulnerabilities - At the inaugural CloudNativeSecurityCon, DevSecOps practitioners discussed how to shore up the software supply chain.2 years ago
-
Vulnerability Summary for the Week of November 29, 2021 - Original release date: December 6, 2021 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info abb -- rtu50...4 years ago
-
AA21-336A: APT Actors Exploiting CVE-2021-44077 in Zoho ManageEngine ServiceDesk Plus - Original release date: December 2, 2021 Summary *This joint Cybersecurity Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (AT...4 years ago
-
Ransomware: Why one city chose to the pay the ransom after falling victim - Posted by InfoSec News on Aug 12 https://www.zdnet.com/article/ransomware-why-one-city-chose-to-the-pay-the-ransom-after-falling-victim/ By Danny Palmer Z...5 years ago
-
What the newly released Checkra1n jailbreak means for iDevice security - There are reasons to embrace it. There are reasons to be wary of it. Here's the breakdown.6 years ago
-
Privacy and Mobile Device Apps - Original release date: July 9, 2019 | Last revised: November 15, 2019 What are the risks associated with mobile device apps? Applications (apps) on your sm...6 years ago
-
44CON 2018 - 12th-14th September, London (UK) - Posted by Steve on Feb 28 44CON 2018 is the UK's best annual Security Conference and Training event. The conference spans 2.5 days with training on the 1...7 years ago
-
Cryptopp Crypto++ 5.6.4 octets Remote Code Execution Vulnerability - Crypto++ (aka cryptopp and libcrypto++) 5.6.4 contained a bug in its ASN.1 BER decoding routine. The library will allocate a memory block based on the leng...8 years ago
-
V2V Communications security considerations - The future of vehicles, road infrastructure and driving are changing. We are progressing with vehicle-to-vehicle (V2V) and vehicle-to-infrastructure (V2I) ...8 years ago
-
vTech – ignorance is no defence (and neither are weasel words) - This morning, Troy Hunt published a blog post alerting to a recent change in the Terms & Conditions published by children’s toy manufacturer vTech. The cha...9 years ago
-
DOJ probing claims U.S. drug agency 'collaborated' with NSA on intelligence - The U.S. Justice Dept. said it was "looking into the issues" raised by an Reuters story, that one of its law enforcement agencies collaborated with the NSA...12 years ago
-
-
-
-
-
-
-
-
-
Posts
No comments:
Post a Comment