Clik here to view.
Windows Autorun Part-1, (Fri, Dec 27th)
When someone suspecting that a malware activity that may exist in a system or a compromised systemone of the most obvious places to check is the startup locations .In this diary I am going to discuss...
View ArticleClik here to view.
Weekend Reading List 27 DEC, (Sat, Dec 28th)
Hope you had a fabulous Christmas for those who celebrate it, for those who do not, a hearty cheers to you! In the spirit of a fabulous weekly service, DRG Weekend Reads, provided by our friends over...
View ArticleClik here to view.
NTP reflection attack, (Fri, Dec 27th)
Symantec has notice in the last few weeks that there is a significant NTP reflection attacks. NTP is Network time protocol and it’s used to synch the time between client and server, it is a UDP...
View ArticleClik here to view.
ACCESS TO YOUR ACCOUNTS HAS BEEN BLOCKED - HSBC Internet
REPLY-TO: HSBC Internet Bankingcardservicehsbcaccess@hotmail.co.ukMessage: This email was sent automatically by the Internet Banking Team at HSBC.For your protection, access to your accounts has been...
View ArticleClik here to view.
DRG online challenge(s), (Sat, Dec 28th)
For the last couple of months DRG (the Dragon Research Group) has posted some interesting security challenges. The last one, for December, is currently online so if you want to test your security...
View ArticleClik here to view.
Happy New Year from the Syrian Electronic Army - Skype"s Social Media...
UPDATE 1500 PDT 01 JAN: Skype Blogs now recovered and reverted to normal. Be sure to add all available protection to your social media accounts and don't use one password to access them all. The Syrian...
View ArticleClik here to view.
OpenSSL.org Defaced by Attackers Gaining Access to Hypervisor, (Thu, Jan 2nd)
By now, most of you have heard that the openssl.org website was defaced. While the source code and repositories were not tampered with, this obviously concerned people. What is more interesting is...
View ArticleClik here to view.
Scans Increase for New Linksys Backdoor (32764/TCP), (Thu, Jan 2nd)
We do see a lot of probes for port 32764/TCP . According to a post to github from 2 days ago, some Linksys devices may be listening on this port enabling full unauthenticated admin access. [1] At this...
View ArticleClik here to view.
Vuln: Linux Kernel 'sctp_v6_xmit()' Function CVE-2013-4350...
Linux Kernel 'sctp_v6_xmit()' Function CVE-2013-4350 Information Disclosure VulnerabilitySource: http://www.securityfocus.com/bid/62405
View ArticleClik here to view.
Vuln: Linux Kernel CVE-2013-4299 Information Disclosure Vulnerability
Linux Kernel CVE-2013-4299 Information Disclosure VulnerabilitySource: http://www.securityfocus.com/bid/63183
View ArticleClik here to view.
Vuln: Ruby Floating Point Parsing Heap Buffer Overflow Vulnerability
Ruby Floating Point Parsing Heap Buffer Overflow VulnerabilitySource: http://www.securityfocus.com/bid/63873
View ArticleClik here to view.
Vuln: eduTrac 'showmask' Parameter Directory Traversal Vulnerability
eduTrac 'showmask' Parameter Directory Traversal VulnerabilitySource: http://www.securityfocus.com/bid/64255
View ArticleClik here to view.
Bugtraq: [security bulletin] HPSBMU02895 SSRT101253 rev. ...
[security bulletin] HPSBMU02895 SSRT101253 rev.1 - HP Data Protector, Remote Increase of Privilege, Denial of Service (DoS), Execution of Arbitrary CodeSource:...
View ArticleClik here to view.
ISC StormCast for Friday, January 3rd 2014 http://isc.sans.edu/podcastdetail....
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.Source: http://isc.sans.edu/podcastdetail.html?id=3755
View ArticleClik here to view.
Account Suspended - Barclays Bank Plc
Dear Valued Customer, We noticed irregular activity on your barclays debit card. For your protection, You are required to answer the verification questions correctly as the primary owner before we...
View ArticleClik here to view.
Vuln: libjpeg/libjpeg-turbo Library CVE-2013-6629 Memory Corruption...
libjpeg/libjpeg-turbo Library CVE-2013-6629 Memory Corruption VulnerabilitySource: http://www.securityfocus.com/bid/63676
View ArticleClik here to view.
Vuln: libjpeg-turbo CVE-2013-6630 Memory Corruption Vulnerability
libjpeg-turbo CVE-2013-6630 Memory Corruption VulnerabilitySource: http://www.securityfocus.com/bid/63679
View ArticleClik here to view.
Vuln: Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5616 Use After Free...
Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5616 Use After Free Memory Corruption VulnerabilitySource: http://www.securityfocus.com/bid/64209
View ArticleClik here to view.
Vuln: Gitolite 'Rc.pm' Information Disclosure Vulnerability
Gitolite 'Rc.pm' Information Disclosure VulnerabilitySource: http://www.securityfocus.com/bid/64507
View ArticleClik here to view.
Monitoring Windows Networks Using Syslog (Part One), (Sat, Jan 4th)
As an incident responder, I love high value logs. We all know Windows event logs can be super chatty, but with the right tuning they can be very useful. I’ve tried out several utilties for sysloging...
View Article