Lucene search
K

9525 matches found

ThreatPost
ThreatPost
added 2011/09/07 6:48 p.m.11 views

DigiNotar Hacker Says He Has GlobalSign Database Backups, Other Data

As GlobalSign continues the investigation into the claimed compromise of its CA infrastructure, the attacker who says he breached DigiNotar and Comodo said in another message on Pastebin Wednesday that not only did he hack GlobalSign, but he has the private key used to sign the certificate for th...

0.5AI score
Exploits0References6
ThreatPost
ThreatPost
added 2011/09/06 8:25 p.m.12 views

Evidence of Infected SCADA Systems Washes Up in Support Forums

While security experts and lawmakers debate the seriousness of cyber threats to critical infrastructure, one security researcher says that evidence that viruses and spyware already have access to industrial control systems is hiding in plain sight: on Web based user support forums. Close to a doz...

0.9AI score
Exploits0References6
The Hacker News
The Hacker News
added 2011/09/05 5:15 p.m.3 views

Department of Homeland Security warns Anonymous Hackers

Department of Homeland Security warns Anonymous Hackers The Department of Homeland Security is beginning to take Anonymous and other non-professional cyber-attackers more seriously as it issues a warning about potential attacks. The 2 September security bulletin from the DHS National Cyber-Securi...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2011/09/05 5:15 p.m.7 views

Department of Homeland Security warns Anonymous Hackers

Department of Homeland Security warns Anonymous Hackers The Department of Homeland Security is beginning to take Anonymous and other non-professional cyber-attackers more seriously as it issues a warning about potential attacks. The 2 September security bulletin from the DHS National Cyber-Securi...

6.8AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2011/09/05 12:0 a.m.25 views

WebWatchBot Monitor 5.1.16 - Divide Zero Vulnerability

Document Title: =============== WebWatchBot Monitor 5.1.16 - Divide Zero Vulnerability Release Date: ============= 2011-09-05 Vulnerability Laboratory ID VL-ID: ==================================== 7 Common Vulnerability Scoring System: ==================================== 3.5 Product & Service...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2011/09/02 4:19 p.m.11 views

Comodo, DigiNotar Attacks Expose Crumbling Foundation of CA System

There are a lot of things in the security world that are broken and there isn’t room to list them all, even on the Internet. But if the events of the last few days have shown us anything, it’s that the certificate authority infrastructure is beyond broken and there’s no quick fix looming on the...

1.2AI score
Exploits0References7
ThreatPost
ThreatPost
added 2011/08/31 5:37 p.m.12 views

Hackers Push Sipvicious VoIP Tools In Malicious Attacks

Researchers at NSS Labs claim that they’ve spotted attacks that use Sipvicious, a common auditing tool for Voice over IP VoIP networks as part of malicious attacks aimed at taking control of vulnerable VoIP servers. The attacks are apparently aimed at taking control of VoIP servers to place...

1AI score
Exploits0References5
ThreatPost
ThreatPost
added 2011/08/31 10:0 a.m.7 views

Black Hat: SSL and the Future of Authenticity

The inherent problems with the certificate authority infrastructure have been known for a long time, but they’ve become even more obvious with the news of the recent compromise of DigiNotar, which resulted in the issuance of a slew of fraudulent SSL certificates. In this talk from the Black Hat U...

1AI score
Exploits0References1
ThreatPost
ThreatPost
added 2011/08/30 3:55 p.m.9 views

DigiNotar Says Its CA Infrastructure Was Compromised

VASCO, the parent company of DigiNotar, says that the fraudulent certificate for Google’s domains that the certificate authority issued was just one of many such bogus certificates it handed out in recent months, and blamed the growing scandal on an attack on its CA infrastructure. In a statement...

0.1AI score
Exploits0References7
ThreatPost
ThreatPost
added 2011/08/30 2:29 p.m.9 views

Behind the Scenes of The Crypto Project

When a small group of activists announced the debut of The Crypto Project earlier this year, for many, ahem, mature, security and privacy advocates it brought to mind memories of the original cypherpunk movement that began in the 1990s and that group’s seminal efforts to encourage the use of stro...

7.1AI score
Exploits0References5
The Hacker News
The Hacker News
added 2011/08/28 8:22 p.m.11 views

INSECT Pro 2.7 - Penetration testing tool download

INSECT Pro 2.7 - Penetration testing tool download INSECT Pro 2.7 - Ultimate is here! This penetration security auditing and testing software solutionis designed to allow organizations of all sizes mitigate, monitor and manage the latest security threats vulnerabilities and implement active...

6.8AI score
Exploits0
Fedora
Fedora
added 2011/08/22 3:10 p.m.55 views

[SECURITY] Fedora 16 Update: zabbix-1.8.6-1.fc16

ZABBIX is software that monitors numerous parameters of a network and the health and integrity of servers. ZABBIX uses a flexible notification mechanism that allows users to configure e-mail based alerts for virtually any event. This allows a fast reaction to server problems. ZABBIX offers...

5CVSS6.2AI score0.01957EPSS
Exploits2
OpenVAS
OpenVAS
added 2011/08/19 12:0 a.m.31 views

Fedora Update for zabbix FEDORA-2011-10618

Check for the Version of zabbix OpenVAS Vulnerability Test Fedora Update for zabbix FEDORA-2011-10618 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

4.3CVSS0.1AI score0.01957EPSS
Exploits1References2
Fedora
Fedora
added 2011/08/18 2:38 a.m.37 views

[SECURITY] Fedora 14 Update: zabbix-1.8.6-1.fc14

ZABBIX is software that monitors numerous parameters of a network and the health and integrity of servers. ZABBIX uses a flexible notification mechanism that allows users to configure e-mail based alerts for virtually any event. This allows a fast reaction to server problems. ZABBIX offers...

4.3CVSS6.2AI score0.01957EPSS
Exploits1
The Hacker News
The Hacker News
added 2011/08/16 8:10 p.m.10 views

Iframe Vulnerability in Google App Engine (Appspot)

Iframe Vulnerability in Google App Engine Appspot An Indian Hacker "Ethical Mohit" have found in Iframe Vulnerability in Contact Desk page of Google App Engine Appspot. 1 Proof of Concept : Click Here 2 Proof of Concept : Click Here Google App Engine lets you run your web applications on Google's...

6.7AI score
Exploits0
OpenVAS
OpenVAS
added 2011/08/09 12:0 a.m.19 views

CentOS Update for systemtap CESA-2009:0373 centos5 i386

Check for the Version of systemtap OpenVAS Vulnerability Test CentOS Update for systemtap CESA-2009:0373 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify ...

6.9CVSS6.4AI score0.00257EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2011/08/09 12:0 a.m.23 views

CentOS Update for systemtap CESA-2009:0373 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.3CVSS5.2AI score0.00257EPSS
Exploits1References2
Vulnerability Lab
Vulnerability Lab
added 2011/08/08 12:0 a.m.28 views

Hyperic HQ Enterprise|E v4.5.1 - Multiple Vulnerabilities

Document Title: =============== Hyperic HQ Enterprise|E v4.5.1 - Multiple Vulnerabilities Release Date: ============= 2011-08-08 Vulnerability Laboratory ID VL-ID: ==================================== 240 Product & Service Introduction: =============================== Designed for companies who r...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2011/07/29 5:10 p.m.11 views

Don't Say I Never Told You: Researcher Warned Congress Of Stuxnet Variants 10 Months Ago

Stuxnet may have been super sophisticated cyber weapon deployed by state actors, but future generations of the malware will be available to run of the mill script kiddies, a noted expert on security and industrial control systems has warned in a letter to the U.S. Congress ten months ago. Ralph...

7.5AI score
Exploits0References5
ThreatPost
ThreatPost
added 2011/07/18 8:45 p.m.15 views

Federal CIO Criticizes Gov't Contractors, Urges Consolidation of Data Centers

Federal Chief Information Officer Vivek Kundra warned of “an IT cartel” of vendors in a discussion with President Barack Obama and his scientific advisors on Friday, according to a report from Network World. During a talk with the President’s Council of Advisors on Science and Technology PCAST,...

0.6AI score
Exploits0References2
Rows per page
Query Builder