Alerts
Jan 21, 2009 (18 hours ago)
Cisco Unified Communications Manager CAPF Denial of Service Vulnerability
from Cisco Security Advisories
Cisco Unified Communications Manager, formerly Cisco CallManager, contains a denial of service (DoS) vulnerability in the Certificate Authority Proxy Function (CAPF) service. Exploitation of this vulnerability could cause an interruption in voice services. The CAPF service is disabled by default.
Jan 21, 2009 (18 hours ago)
Cisco Security Manager Vulnerability
from Cisco Security Advisories
Cisco Security Manager contains a vulnerability when it is used with Cisco IPS Event Viewer (IEV) that results in open TCP ports on both the Cisco Security Manager server and IEV client. An unauthenticated, remote attacker could leverage this vulnerability to access the MySQL databases or IEV server.
9:10 PM (9 hours ago)
How to Use Twitter for Information Mining, (Wed, Jan 21st)
from SANS Internet Storm Center, InfoCON: green
Twitter is fun. It's also a powerful research tool ...(more)...
Jan 21, 2009 (14 hours ago)
Vulnerabilities on Cisco and Apple products, (Wed, Jan 21st)
from SANS Internet Storm Center, InfoCON: green
A new set of vulnerabilities has been announced for Cisco and Apple products: Cisco: Cisco S ...(more)...
Jan 21, 2009 (20 hours ago)
Traffic increase for port UDP/8247, (Wed, Jan 21st)
from SANS Internet Storm Center, InfoCON: green
We got reports of a significant traffic increase associated to port UDP/8247 starting yesterday. Tha ...(more)...
Jan 21, 2009 (21 hours ago)
NMAP Trivia ANSWERS: Mastering Network Mapping and Scanning, (Wed, Jan 21st)
from SANS Internet Storm Center, InfoCON: green
Three weeks ago we published the NMAP Trivia challenge. Thanks to all ISC readers that submitted the ...(more)...
Security News
9:21 PM (8 hours ago)
Disabling Windows Autorun - there's a right way and a wrong way
from The Register - Security
Redmond's Downadup protection
After some confusion about exactly how Windows users can protect themselves against a prolific computer worm called Downadup, Microsoft security watchers are once again reiterating the steps for disabling the Autorun feature.…
5:16 AM (1 hour ago)
Sophos to shed one in 20 jobs
from The Register - Security
Redundancies due to shifting priorities, not credit crunch
UK-based security firm Sophos plans to shed five per cent of its workforce as part of a "business reorganisation".…
Jan 21, 2009 (22 hours ago)
The End of Passwords?
from WindowSecurity.com by rickym@trencor.net (Ricky M. Magalhaes)
The end of passwords and how new technologies will keep enterprise information assets secure.
5:07 AM (1 hour ago)
Bloggers wonder: Is Obama's BlackBerry super-encrypted?
from Network World on Security
Bloggers are now speculating that President Barack Obama will have access to a BlackBerry wireless device equipped with a super-encryption package, although -- not surprisingly -- no one is sure whether the president actually is using one.
5:07 AM (1 hour ago)
Blogger: Obama to get 'super-encrypted' BlackBerry
from Network World on Security by John Cox
A blogger for The Atlantic says, without attribution that President Obama will get to use a BlackBerry, one that the NSA has its fingerprints all over, too.
5:07 AM (1 hour ago)
Panda Security: Downadup worm now infects 1 in every 16 PCs
from Network World on Security
The computer worm responsible for the biggest attack in years has infected at least 1 out of every 16 PCs worldwide, a security company said Wednesday, and may have managed to compromise as many as nearly 1 in 3.
Jan 21, 2009 (16 hours ago)
DOJ seeks to block warrantless wiretap ruling
from Ars Technica by julian.sanchez@arstechnica.com (Julian Sanchez)
Just before George W. Bush left office, Justice Department lawyers moved to block a suit challenging warrantless NSA wiretaps.
Jan 21, 2009 (12 hours ago)
DoD Foots the Bill for Web-Based Security Training
from PC World Latest Technology News
Save budgetary bucks by outsourcing security training to our government.
Jan 21, 2009 (12 hours ago)
Debit Card Data Breach Compared to TJX
from PC World Latest Technology News
Banks warn customers about possible fraud, and in one case deactivate 8,500 debit cards.
Jan 21, 2009 (12 hours ago)
Gmail Fills the Bill for Obama Staff
from PC World Latest Technology News
When first entering the White House, Obama's staff lacked e-mail. So, the administration issued its staffers Google Gmail accounts to bridge the gap.
-- Aurora Report says "wow it is a veritable heat wave out there" not that it has anything to do with security but after days of subzero temps today it is a whopping 27 F.
Subscribe to:
Post Comments (Atom)
My Blog List
-
-
Oxford Uni student data pwned yet again - this time via career platform breach - Totally different attack from the break-in last month. Oh so that's OK then1 day ago
-
Hackers Used Meta’s AI Support Bot to Seize Instagram Accounts - The Instagram accounts for the Obama White House and the Chief Master Sergeant of the U.S. Space Force were briefly defaced with pro-Iranian images and mes...6 days ago
-
Mandiant Global Median Dwell Time Deteriorates from 11 to 14 Days - Oh snap. My single most important cybersecurity metric deteriorated again. In the M-Trends report for calendar year 2024, Mandiant’s global median dwe...
2 months ago -
MSSQLand – Lightweight MS-SQL Interaction Tool for Lateral Movement and Post-Exploitation - MSSQLand enables red teams to interact with MS-SQL servers and linked instances in restricted environments without complex T-SQL queries. Assembly-ready to...2 months ago
-
Today's NYT Mini Crossword Answers for Tuesday, Oct. 7 - Here are the answers for The New York Times Mini Crossword for Oct. 7.
8 months ago -
Today's NYT Mini Crossword Answers for Tuesday, Oct. 7 - Here are the answers for The New York Times Mini Crossword for Oct. 7.
8 months ago
-
Announcing SecTemplates.com release #6: Security Partner Program Pack v1 - I have built several security partner programs at companies such as Box Inc. and Coinbase, with over 8 years of experience leading them. I have consistentl...1 year ago
-
Anybody knows that this URL is about? Maybe Balena API request?, (Wed, Feb 7th) - Yesterday, I noticed a new URL in our honeypots: /v5/device/heartbeat. But I have no idea what this URL may be associated with. Based on some googleing, I ...2 years ago
-
Comic for March 12, 2023 - Dilbert readers - Please visit Dilbert.com to read this feature. Due to changes with our feeds, we are now making this RSS feed a link to Dilbert.com.3 years ago
-
87% of Container Images in Production Have Critical or High-Severity Vulnerabilities - At the inaugural CloudNativeSecurityCon, DevSecOps practitioners discussed how to shore up the software supply chain.3 years ago
-
Vulnerability Summary for the Week of November 29, 2021 - Original release date: December 6, 2021 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info abb -- rtu50...4 years ago
-
AA21-336A: APT Actors Exploiting CVE-2021-44077 in Zoho ManageEngine ServiceDesk Plus - Original release date: December 2, 2021 Summary *This joint Cybersecurity Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (AT...4 years ago
-
Ransomware: Why one city chose to the pay the ransom after falling victim - Posted by InfoSec News on Aug 12 https://www.zdnet.com/article/ransomware-why-one-city-chose-to-the-pay-the-ransom-after-falling-victim/ By Danny Palmer Z...5 years ago
-
What the newly released Checkra1n jailbreak means for iDevice security - There are reasons to embrace it. There are reasons to be wary of it. Here's the breakdown.6 years ago
-
Privacy and Mobile Device Apps - Original release date: July 9, 2019 | Last revised: November 15, 2019 What are the risks associated with mobile device apps? Applications (apps) on your sm...6 years ago
-
44CON 2018 - 12th-14th September, London (UK) - Posted by Steve on Feb 28 44CON 2018 is the UK's best annual Security Conference and Training event. The conference spans 2.5 days with training on the 1...8 years ago
-
Cryptopp Crypto++ 5.6.4 octets Remote Code Execution Vulnerability - Crypto++ (aka cryptopp and libcrypto++) 5.6.4 contained a bug in its ASN.1 BER decoding routine. The library will allocate a memory block based on the leng...8 years ago
-
V2V Communications security considerations - The future of vehicles, road infrastructure and driving are changing. We are progressing with vehicle-to-vehicle (V2V) and vehicle-to-infrastructure (V2I) ...9 years ago
-
vTech – ignorance is no defence (and neither are weasel words) - This morning, Troy Hunt published a blog post alerting to a recent change in the Terms & Conditions published by children’s toy manufacturer vTech. The cha...10 years ago
-
DOJ probing claims U.S. drug agency 'collaborated' with NSA on intelligence - The U.S. Justice Dept. said it was "looking into the issues" raised by an Reuters story, that one of its law enforcement agencies collaborated with the NSA...12 years ago
-
-
-
-
-
-
-
-
-
Posts
No comments:
Post a Comment