Debian: Security Advisory (DSA-3909-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Sql injection

In install/pagedbsettings.php in the Core distribution of XOOPS 2.5.8.1, unfiltered data passed to CREATE and ALTER SQL queries caused SQL Injection in the database settings page, related to use of GBK in CHARACTER SET and COLLATE clauses...

Threat Outbreak Alert RuleID29800: Email Messages Distributing Malicious Software on July 12, 2017

Medium Alert ID: 54472 First Published: 2017 July 12 17:21 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID29800 may contain the following files: Name | Siz...

Threat Outbreak Alert RuleID29747: Email Messages Distributing Malicious Software on July 11, 2017

Medium Alert ID: 54465 First Published: 2017 July 11 16:16 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID29747 may contain the following files: Name | Siz...

Threat Outbreak Alert RuleID29727: Email Messages Distributing Malicious Software on July 7, 2017

Medium Alert ID: 54441 First Published: 2017 July 7 13:36 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID29727 may contain the following files: Name | Size...

Threat Outbreak Alert RuleID29690: Email Messages Distributing Malicious Software on July 6, 2017

Medium Alert ID: 54429 First Published: 2017 July 6 17:45 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID29690 may contain the following files: Name | Size...

Threat Outbreak Alert RuleID29667: Email Messages Distributing Malicious Software on July 6, 2017

Medium Alert ID: 54427 First Published: 2017 July 6 17:45 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID29667 may contain the following files: Name | Size...

Threat Outbreak Alert RuleID29689: Email Messages Distributing Malicious Software on July 6, 2017

Medium Alert ID: 54436 First Published: 2017 July 6 16:29 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID29689 may contain the following files: Name | Size...

Threat Outbreak Alert RuleID29687: Email Messages Distributing Malicious Software on July 6, 2017

Medium Alert ID: 54435 First Published: 2017 July 6 16:20 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID29687 may contain the following files: Name | Size...

Threat Outbreak Alert RuleID29711: Email Messages Distributing Malicious Software on July 5, 2017

Medium Alert ID: 54422 First Published: 2017 July 5 20:22 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID29711 may contain the following files: Name | Size...

[SECURITY] [DSA 3902-1] jabberd2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3902-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 05, 2017 https://www.debian.org/security/faq -...

Debian: Security Advisory (DSA-3902-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Researchers Crack 1024-bit RSA Encryption in GnuPG Crypto Library

Security boffins have discovered a critical vulnerability in a GnuPG cryptographic library that allowed the researchers to completely break RSA-1024 and successfully extract the secret RSA key to decrypt data. Gnu Privacy Guard GnuPG or GPG is popular open source encryption software used by many...

systemd CVE-2017-9445 Out-Of-Bounds Write Remote Code Execution Vulnerability

Vulnerability description Canonical's Ubuntu developer Chris Coulson found a critical vulnerability, you can use it to remotely attack run popular of the operating system of the machine. The vulnerability number CVE-2017-9445 located in the Systemd init system and service manager . A remote...

On This Week's NotPetya, ExPetr Outbreak

Mike Mimoso and Chris Brook discuss this week’s ExPetr global ransomware outbreak, how it was distributed, the wiper aspect, and similarities to 2016’s Petya ransomware. Download: ThreatpostNewsWrapJune302017.mp3 Music by Chris Gonsalves Show notes: ExPetr Called a Wiper Attack, Not Ransomware Ne...

Threat Outbreak Alert RuleID29621: Email Messages Distributing Malicious Software on June 29, 2017

Medium Alert ID: 54332 First Published: 2017 June 29 17:41 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID29621 may contain the following files: Name | Siz...

Ubuntu Fixes Linux Systemd Bug

Developers with Canonical pushed out a handful of patches for the Linux-based operating system Ubuntu this week, including one that resolves a bug that could have let an attacker cause a denial of service or execute arbitrary code with a TCP payload. Chris Coulson, a software and electronics...

New Petya Distribution Vectors Bubbling to Surface

Join Kaspersky Lab and Comae Technologies Thursday June 29, 2017 at 10 a.m. Eastern time for a webinar “The Inside Story of the Petya/ExPetr Ransomware.” Click here to attend. While Microsoft and others continue to shore up links between yesterday’s global ransomware outbreak and the update...

Threat Outbreak Alert RuleID29622: Email Messages Distributing Malicious Software on June 27, 2017

Medium Alert ID: 54321 First Published: 2017 June 27 18:09 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID29622 may contain the following files: Name | Siz...

Alpine Linux: From vulnerability discovery to code execution

I’ve recently uncovered two critical vulnerabilities in Alpine Linux’s package manager, assigned CVE-2017-9669 and CVE-2017-9671. These vulnerabilities could potentially lead to an attacker executing malicious code on your machines, if you are using Alpine knowingly or implicitly. Alpine Linux is...