skip to main | skip to sidebar

Aurora Report

The problem is what you don't know is what you don't know and what you heard me say is not what I said.

Sunday, May 10, 2009

My Blogroll

MisCellany
TekNoLog
SANS
VendAlertZ
insecure.org
M$
us-cert
SekUrIT

Posted by Jayson Cavendish at 7:41:00 AM

No comments:

Post a Comment

Newer Post Older Post Home

Subscribe to: Post Comments (Atom)

My Blog List

The Register - Security

Data broker leaves 600K+ sensitive files exposed online - Researcher spotted open database before criminals … we hope *Exclusive* More than 600,000 sensitive files containing thousands of people's criminal histor...
42 minutes ago
CNET News - Security

Champions League Soccer: Livestream Liverpool vs. Real Madrid From Anywhere - Two of the tournaments most successful teams face off at Anfield.
1 hour ago
Yahoo! News: Security News

Former HMRC employee spared jail after helping ex-husband launder more than £3m -
3 hours ago
InSecurity Complex

Don't Let APYs Up to 4.75% Pass You By. Today's CD Rates, Nov. 27, 2024 - These rates may be the highest you find for some time.
3 hours ago
Krebs on Security

Hacker in Snowflake Extortions May Be a U.S. Soldier - Two men have been arrested for allegedly stealing data from and extorting dozens of companies that used the cloud data storage company Snowflake, but a thi...
17 hours ago
TaoSecurity

What Are Normal Users Supposed to Do with IDS Alerts from Network Gear? - Probably once a week, I see posts like this in the r/Ubiquiti subreddit. Ubiquiti makes network gear that includes an "IDS/IPS" feature. I own some older U...
1 month ago
SANS Internet Storm Center, InfoCON: green

Anybody knows that this URL is about? Maybe Balena API request?, (Wed, Feb 7th) - Yesterday, I noticed a new URL in our honeypots: /v5/device/heartbeat. But I have no idea what this URL may be associated with. Based on some googleing, I ...
9 months ago
Darknet - The Darkside

Best EDR Of The Market (BEOTM) – Endpoint Detection and Response Testing Tool - BestEDROfTheMarket is a naive user-mode EDR (Endpoint Detection and Response) tool designed to serve as a testing ground
10 months ago
Dilbert Daily Strip

Comic for March 12, 2023 - Dilbert readers - Please visit Dilbert.com to read this feature. Due to changes with our feeds, we are now making this RSS feed a link to Dilbert.com.
1 year ago
DarkReading - All Stories

87% of Container Images in Production Have Critical or High-Severity Vulnerabilities - At the inaugural CloudNativeSecurityCon, DevSecOps practitioners discussed how to shore up the software supply chain.
1 year ago
US-CERT Cyber Security Bulletins

Vulnerability Summary for the Week of November 29, 2021 - Original release date: December 6, 2021 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info abb -- rtu50...
2 years ago
US-CERT Technical Cyber Security Alerts

AA21-336A: APT Actors Exploiting CVE-2021-44077 in Zoho ManageEngine ServiceDesk Plus - Original release date: December 2, 2021 Summary *This joint Cybersecurity Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (AT...
2 years ago
CGISecurity - Website and Application Security News

20 years of CGISecurity: What appsec looked like in the year 2000 - Just realized that 20 years have passed since I started this site to learn more about web security threats. What 'appsec' looked like in 2000 OWASP didn't ...
4 years ago
Info Security News

Ransomware: Why one city chose to the pay the ransom after falling victim - Posted by InfoSec News on Aug 12 https://www.zdnet.com/article/ransomware-why-one-city-chose-to-the-pay-the-ransom-after-falling-victim/ By Danny Palmer Z...
4 years ago
Security

What the newly released Checkra1n jailbreak means for iDevice security - There are reasons to embrace it. There are reasons to be wary of it. Here's the breakdown.
5 years ago
US-CERT Cyber Security Tips

Privacy and Mobile Device Apps - Original release date: July 9, 2019 | Last revised: November 15, 2019 What are the risks associated with mobile device apps? Applications (apps) on your sm...
5 years ago
Penetration Testing

44CON 2018 - 12th-14th September, London (UK) - Posted by Steve on Feb 28 44CON 2018 is the UK's best annual Security Conference and Training event. The conference spans 2.5 days with training on the 1...
6 years ago
SecuriTeam

Cryptopp Crypto++ 5.6.4 octets Remote Code Execution Vulnerability - Crypto++ (aka cryptopp and libcrypto++) 5.6.4 contained a bug in its ASN.1 BER decoding routine. The library will allocate a memory block based on the leng...
7 years ago
WindowSecurity.com

V2V Communications security considerations - The future of vehicles, road infrastructure and driving are changing. We are progressing with vehicle-to-vehicle (V2V) and vehicle-to-infrastructure (V2I) ...
7 years ago
CounterMeasures - Security, Privacy, Trust

vTech – ignorance is no defence (and neither are weasel words) - This morning, Troy Hunt published a blog post alerting to a recent change in the Terms & Conditions published by children’s toy manufacturer vTech. The cha...
8 years ago
Zero Day

DOJ probing claims U.S. drug agency 'collaborated' with NSA on intelligence - The U.S. Justice Dept. said it was "looking into the issues" raised by an Reuters story, that one of its law enforcement agencies collaborated with the NSA...
11 years ago
SecurityFocus News

News: Change in Focus - Change in Focus
14 years ago
SearchSecurity: Security Wire Daily News

-
eWeek Security Watch

-
Security Fix

-
Federal Computer Week: Security News

-
Network World on Security

-
Security - RSS Feeds

-
Cyber, War and Law™

-
McAfee Avert Labs

-

Schneier on Security

Blog Archive

► 2010 (10)
- ► March (1)
- ► February (4)
- ► January (5)

▼ 2009 (174)
- ► December (4)
- ► November (4)
- ► October (4)
- ► September (7)
- ► August (4)
- ► July (13)
- ► June (21)
- ▼ May (21)
- ► April (18)
- ► March (21)
- ► February (28)
- ► January (29)

Subscribe To Aurora Report

Posts

Posts

Comments

Comments

TaoSecurity

Notes:

http://cybercrime.gov
http://isc.sans.org
http://secunia.com/advisories/
http://www.cert.org
http://www.commoncriteriaportal.org
http://www.darknet.org.uk
http://www.hackerstorm.com
http://www.hackerwatch.org
http://www.packetstormsecurity.com
http://www.securiteam.com
http://www.securitytracker.com
http://www.theregister.co.uk
http://www.us-cert.gov