9525 matches found
DigiNotar Hacker Says He Has GlobalSign Database Backups, Other Data
As GlobalSign continues the investigation into the claimed compromise of its CA infrastructure, the attacker who says he breached DigiNotar and Comodo said in another message on Pastebin Wednesday that not only did he hack GlobalSign, but he has the private key used to sign the certificate for th...
Evidence of Infected SCADA Systems Washes Up in Support Forums
While security experts and lawmakers debate the seriousness of cyber threats to critical infrastructure, one security researcher says that evidence that viruses and spyware already have access to industrial control systems is hiding in plain sight: on Web based user support forums. Close to a doz...
Department of Homeland Security warns Anonymous Hackers
Department of Homeland Security warns Anonymous Hackers The Department of Homeland Security is beginning to take Anonymous and other non-professional cyber-attackers more seriously as it issues a warning about potential attacks. The 2 September security bulletin from the DHS National Cyber-Securi...
Department of Homeland Security warns Anonymous Hackers
Department of Homeland Security warns Anonymous Hackers The Department of Homeland Security is beginning to take Anonymous and other non-professional cyber-attackers more seriously as it issues a warning about potential attacks. The 2 September security bulletin from the DHS National Cyber-Securi...
WebWatchBot Monitor 5.1.16 - Divide Zero Vulnerability
Document Title: =============== WebWatchBot Monitor 5.1.16 - Divide Zero Vulnerability Release Date: ============= 2011-09-05 Vulnerability Laboratory ID VL-ID: ==================================== 7 Common Vulnerability Scoring System: ==================================== 3.5 Product & Service...
Comodo, DigiNotar Attacks Expose Crumbling Foundation of CA System
There are a lot of things in the security world that are broken and there isn’t room to list them all, even on the Internet. But if the events of the last few days have shown us anything, it’s that the certificate authority infrastructure is beyond broken and there’s no quick fix looming on the...
Hackers Push Sipvicious VoIP Tools In Malicious Attacks
Researchers at NSS Labs claim that they’ve spotted attacks that use Sipvicious, a common auditing tool for Voice over IP VoIP networks as part of malicious attacks aimed at taking control of vulnerable VoIP servers. The attacks are apparently aimed at taking control of VoIP servers to place...
Black Hat: SSL and the Future of Authenticity
The inherent problems with the certificate authority infrastructure have been known for a long time, but they’ve become even more obvious with the news of the recent compromise of DigiNotar, which resulted in the issuance of a slew of fraudulent SSL certificates. In this talk from the Black Hat U...
DigiNotar Says Its CA Infrastructure Was Compromised
VASCO, the parent company of DigiNotar, says that the fraudulent certificate for Google’s domains that the certificate authority issued was just one of many such bogus certificates it handed out in recent months, and blamed the growing scandal on an attack on its CA infrastructure. In a statement...
Behind the Scenes of The Crypto Project
When a small group of activists announced the debut of The Crypto Project earlier this year, for many, ahem, mature, security and privacy advocates it brought to mind memories of the original cypherpunk movement that began in the 1990s and that group’s seminal efforts to encourage the use of stro...
INSECT Pro 2.7 - Penetration testing tool download
INSECT Pro 2.7 - Penetration testing tool download INSECT Pro 2.7 - Ultimate is here! This penetration security auditing and testing software solutionis designed to allow organizations of all sizes mitigate, monitor and manage the latest security threats vulnerabilities and implement active...
[SECURITY] Fedora 16 Update: zabbix-1.8.6-1.fc16
ZABBIX is software that monitors numerous parameters of a network and the health and integrity of servers. ZABBIX uses a flexible notification mechanism that allows users to configure e-mail based alerts for virtually any event. This allows a fast reaction to server problems. ZABBIX offers...
Fedora Update for zabbix FEDORA-2011-10618
Check for the Version of zabbix OpenVAS Vulnerability Test Fedora Update for zabbix FEDORA-2011-10618 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
[SECURITY] Fedora 14 Update: zabbix-1.8.6-1.fc14
ZABBIX is software that monitors numerous parameters of a network and the health and integrity of servers. ZABBIX uses a flexible notification mechanism that allows users to configure e-mail based alerts for virtually any event. This allows a fast reaction to server problems. ZABBIX offers...
Iframe Vulnerability in Google App Engine (Appspot)
Iframe Vulnerability in Google App Engine Appspot An Indian Hacker "Ethical Mohit" have found in Iframe Vulnerability in Contact Desk page of Google App Engine Appspot. 1 Proof of Concept : Click Here 2 Proof of Concept : Click Here Google App Engine lets you run your web applications on Google's...
CentOS Update for systemtap CESA-2009:0373 centos5 i386
Check for the Version of systemtap OpenVAS Vulnerability Test CentOS Update for systemtap CESA-2009:0373 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify ...
CentOS Update for systemtap CESA-2009:0373 centos5 i386
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Hyperic HQ Enterprise|E v4.5.1 - Multiple Vulnerabilities
Document Title: =============== Hyperic HQ Enterprise|E v4.5.1 - Multiple Vulnerabilities Release Date: ============= 2011-08-08 Vulnerability Laboratory ID VL-ID: ==================================== 240 Product & Service Introduction: =============================== Designed for companies who r...
Don't Say I Never Told You: Researcher Warned Congress Of Stuxnet Variants 10 Months Ago
Stuxnet may have been super sophisticated cyber weapon deployed by state actors, but future generations of the malware will be available to run of the mill script kiddies, a noted expert on security and industrial control systems has warned in a letter to the U.S. Congress ten months ago. Ralph...
Federal CIO Criticizes Gov't Contractors, Urges Consolidation of Data Centers
Federal Chief Information Officer Vivek Kundra warned of “an IT cartel” of vendors in a discussion with President Barack Obama and his scientific advisors on Friday, according to a report from Network World. During a talk with the President’s Council of Advisors on Science and Technology PCAST,...