Proofpoint published research of never seen but heavily theorized Internet-of-Things cyber attack. They believe this is an industry first - standard household appliances such as smart TVs and Refrigerators used to send malicious and junk email accross the globe.
Wikileaks team and the World's most famous activist whistleblower are holding a talk in Saal 1 at Chaos Communication Congress in Hamburg, Germany.
According to documents released by Edward Snowden, NSA and GCHQ (UK version of NSA) use Google's cookies, primarily designed for interest-based ad-targeting, to identify their targets.
The official Website of U.S. Marines got hacked today by the hacktivist group Syrian Electronic Army following President Obama's announcement that he would seek congressional approvement for a military strike against Syria.
A new virus which is masquerading as a video message can hijack Facebook accounts and Google Chrome browsers.
News is spreading that google.ps was hacked by a Palestinian hacker group. The apparent google.ps hack actually consisted of posioning root DNS servers of the .ps TLD system. The DNS attack of course had political motives.
Department of Homeland Security issued an on Friday (02 Aug) following a vulnerability disclosure in all versions of the transport layer security (TLS) and secure sockets layer (SSL).
It seems more and more foreigners do their ATM hacking in Thailand. In the last 18 months over 10 groups of various nationalities have been arrested across Thailand for stealing.
Students from University of Texas at Austin were successful in spoofing GPS signals and steering $80m worth yacht off course. The experiment took place 30 miles off the coast of Italy while the yacht was sailing in international waters.
The famous German video game company Crytek recently took down 4 of it's websites. Apart from the usual "please change your password when you login", there's a chance the impact may be a bit further than just Crytek's websites.
Industry newsWe're reporting IT security news on a daily basis
- » APT 12 returns with new tools
- » New variant mobile worm
- » Google will help users surf safely
- » Microsoft employs hackers again
- » Xerox security vulnerability
- » FBI starts Operation Identity Shield
- » Black Hat reveals security issues again
- » A new Trojan hiding in e-mails
- » The fake Interpol site
- » Another Firefox exploit
- » 8000 websites defaced because of Lebanon war
- » New Microsoft update makes Windows incompatible
- » Firefox update fixes security issues
- » A Trojan in Firefox extension
AdvisoriesSecurity advisories by popular software Vendors
- Thunderbird vulnerabilities
- Important katello-configure security update
Red Hat: RHSA-2014:1186-01
- Important spacewalk-java security update
Red Hat: RHSA-2014:1184-01
- qemu 1.6.2 updates
- Critical flash-plugin security update
Red Hat: RHSA-2014:1173-01
- Important procmail security update
Red Hat: RHSA-2014:1172-01
- mariadb 5.5.39 updates
- net-snmp 5.7.2 updates
VulnerabilitiesWhat's cooking right now?
- » High: The CGI component in Cybozu Garoon 3.1.0 through 3.7 SP3 allows remote attackers to execute arbitrar
- » Med: The PPPoL2TP feature in net/l2tp/l2tp_ppp.c in the Linux kernel through 3.15.6 allows local users to
- » High: Buffer overflow in the HVM graphics console support in Citrix XenServer 6.2 Service Pack 1 and earli
- » High: Unrestricted file upload vulnerability in Attachmate Verastream Process Designer (VPD) before R6 SP1
- » High: The kgsl graphics driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Andr
- » Med: Race condition in the power policy functions in policy-funcs in acpi-support before 0.142 allows loc
- » High: Use-after-free vulnerability in the CERT_DestroyCertificate function in libnss3.so in Mozilla Networ
- » High: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 31.0, Firefox E
- » High: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 31.0 and Thunde
- » High: The mozilla::dom::AudioBufferSourceNodeEngine::CopyFromInputBuffer function in Mozilla Firefox befor
- » High: Use-after-free vulnerability in the MediaInputPort class in Mozilla Firefox before 31.0 and Thunderb
- » High: Use-after-free vulnerability in the FontTableRec destructor in Mozilla Firefox before 31.0, Firefox
- » High: Use-after-free vulnerability in the nsDocLoader::OnProgress function in Mozilla Firefox before 31.0,