Lucene search
K

6851 matches found

CVE
CVE
added 2014/02/22 9:0 p.m.58 views

CVE-2013-6732

IBM Cognos BI Server is affected by CVE-2013-6732, a reflective cross-site scripting (XSS) vulnerability. An unsanitized input parameter can be exploited by tricking a user into clicking a crafted link to inject arbitrary script/HTML. Affected versions: Cognos BI 8.4.1; 10.1 before IF6; 10.1.1 be...

4.3CVSS7.3AI score0.01362EPSS
Exploits0References2Affected Software1
ICS
ICS
added 2014/02/15 7:0 a.m.230 views

Schneider Electric Wonderware Intelligence Security Patch for OpenSSL Vulnerability

OVERVIEW Schneider Electric Wonderware’s Cyber Security Team has identified an OpenSSL Heartbleed vulnerability in the Wonderware Intelligence application, caused by a third-party component. Schneider Electric Wonderware has produced a patch that mitigates this vulnerability. This vulnerability...

7.5CVSS8AI score0.99999EPSS
Exploits88References10
ThreatPost
ThreatPost
added 2014/02/14 2:27 p.m.40 views

New IE Zero Day Found Targeting Military Intelligence

Attackers were able to compromise the U.S. Veterans of Foreign Wars’ website this week and serve up a previously unknown zero day exploit in Internet Explorer 10, and while motivation behind the campaign is still unclear, experts are speculating its aim was to procure military intelligence...

9.3CVSS0.6AI score0.85239EPSS
Exploits23References6
Exploit DB
Exploit DB
added 2014/02/11 12:0 a.m.73 views

Tableau Server < 8.0.7 / < 8.1.2 - Blind SQL Injection

Trustwave's SpiderLabs Security Advisory TWSL2014-003: Blind SQL Injection Vulnerability in Tableau Server Published: 02/07/14 Version: 1.1 Vendor: Tableau Software http://www.tableausoftware.com Product: Tableau Server Versions affected: 8.1.X before 8.1.2 and 8.0.X before 8.0.7. Not present in...

7.5CVSS6.5AI score0.04301EPSS
Exploits5
The Hacker News
The Hacker News
added 2014/02/03 7:22 a.m.10 views

'Chaos Computer Club' filed criminal complaint against German government Over Mass Spying

After the revelation of former NSA contractor Edward Snowden, we all very well knew the impact of it on the world, but nobody would have estimated that the impact will be so worst. The revelation, not only defaced NSA, but also its counterpart GCHQ, and various other governments which were servin...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2014/02/01 1:13 a.m.8 views

Navy's Cyberwar Expert - New Director of NSA, replacing Gen. Keith Alexander

It is very clear that when we talk about Intelligence and Surveillance, the first name comes to our mind is the U.S National Security Agency NSA and, the second is Gen. Keith Alexander, the Director of NSA..GEEK behind the massive surveillance Programs. Many documents revealed by the former NSA’s...

6.8AI score
Exploits0
ThreatPost
ThreatPost
added 2014/01/29 12:14 p.m.12 views

Senators Question Intelligence Officials About Snowden, Domestic Surveillance

In a hearing before the Senate Intelligence Committee to discuss the public portions of a new national security threat assessment, top intelligence and law enforcement officials said that attacks against financial networks and the critical infrastructure are major threats to the United States’...

0.3AI score
Exploits0References4
ThreatPost
ThreatPost
added 2014/01/24 1:39 p.m.14 views

Crypto Pioneers Write Letter on NSA Surveillance to Obama

Perhaps the biggest condemnation of President Obama’s address last Friday announcing reforms to the NSA’s surveillance programs was his failure to mention any of the agency’s alleged involvement in subverting cryptography standards and the impact that has had on the trustworthiness of products...

6.3AI score
Exploits0References4
ThreatPost
ThreatPost
added 2014/01/23 3:6 p.m.15 views

Oversight Board Calls NSA Metadata Collection Illegal

Another independent review board investigating the National Security Agency’s collection of phone records metadata has come down hard on the program, calling it illegal, recommending the government end the program, and questioning its effectiveness in ferreting out terrorists. The Privacy and Civ...

0.2AI score
Exploits0References2
The Hacker News
The Hacker News
added 2014/01/22 7:26 p.m.10 views

Infamous hacker "Guccifer" arrested in Romania; charged with multiple cyber crimes

"Guccifer" arrested in Romania, the infamous hacker who was responsible for breaching the social media and email accounts of numerous high profile US and Romanian Politicians. Romanian authorities collaborated with US services to catch him and the officers of the Directorate for Investigating...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2014/01/21 8:21 a.m.14 views

23-Year-old Russian Hacker confessed to be original author of BlackPOS Malware

In the previous reports of Cyber Intelligence firm 'IntelCrawler' named Sergey Tarasov, a 17-year-old teenager behind the nickname "ree4", as the developer of BlackPOS malware. BlackPOS also known as "reedum" or 'Kaptoxa' is an effective crimeware kit, used in the massive heist of possibly 110...

6.7AI score
Exploits0
ThreatPost
ThreatPost
added 2014/01/20 2:48 p.m.9 views

The NSA, Obama and Straw Men

For the people expecting President Barack Obama to announce sweeping changes to the NSA’s surveillance programs, his speech on Friday likely was a major disappointment. Obama laid out some new controls and limits for some of the more controversial programs, specifically the phone metadata...

Exploits0References3
The Hacker News
The Hacker News
added 2014/01/20 2:5 a.m.16 views

More details about alleged 17-year-old Russian BlackPOS Malware Author released

Security experts at IntelCrawler provided a new interesting update on BlackPOS malware author, that he forgot to delete his Social networking profile even after the last exposure from the investigators. As we have reported a few days before that the Intelligence firm IntelCrawler has identified a...

6.9AI score
Exploits0
ThreatPost
ThreatPost
added 2014/01/14 4:47 p.m.7 views

Metadata Program 'Not Uniquely Valuable'

In a mostly friendly and non-confrontational hearing on Tuesday, members of the Senate Judiciary Committee spent a couple of hours talking to members of the White House-appointed NSA review board about the extent of the agency’s surveillance and the panel’s recommendations for reform. The hearing...

2.1AI score
Exploits0References2
ThreatPost
ThreatPost
added 2014/01/10 1:23 p.m.33 views

Former NSA Officials Detail Failures of Agency Programs in Letter to Obama

In the weeks and months leading up to 9/11, the National Security Agency had been working on a new information-gathering and analysis system known as THINTHREAD, a system that was built in-house and was meant to replace the uncountable number of stand-alone collection systems and attendant...

6.9AI score
Exploits0References1
The Hacker News
The Hacker News
added 2014/01/06 1:26 a.m.13 views

Indian Intelligence Agencies going to deploy Internet Surveillance project NETRA

Think twice before using some words like ‘Bomb’, ‘Attack’, ‘Blast’ or ‘kill’ in your Facebook status update, tweets or emails, because this may flag you as a potential terrorist under a surveillance project of Indian Security agencies. This Indian Internet surveillance project named as NETRA...

6.4AI score
Exploits0
ThreatPost
ThreatPost
added 2014/01/03 2:47 p.m.12 views

NSA Metadata Program Likely Not Cost-Effective, Researchers Say

While much of the coverage of the surveillance programs revealed by Edward Snowden have focused on the legality and constitutionality of the collection of metadata and Internet traffic in the name of counter-terrorism and national security, the question of whether these programs are actually cost...

0.1AI score
Exploits0References4
ThreatPost
ThreatPost
added 2013/12/27 1:40 p.m.12 views

NSA Bulk Telephony Metadata Collection Program Legal

A federal court today shot down a challenge by the American Civil Liberties Union ACLU to the National Security Agency’s bulk phone metadata collection program, determining that the spy agency’s actions are legal. The ruling by U.S. District Court judge William Pauley contradicts a Dec. 16 D.C...

Exploits0References2
Kitploit
Kitploit
added 2013/12/22 5:23 a.m.17 views

[Hook Analyser 3.0] A Freeware Malware Analysis and Cyber Threat Intelligence Software

In terms of improvements, a new module has been added - Cyber Threat Intelligence. Threat Intel module is being created to gather and analyse information related to Cyber Threats and vulnerabilities. The module can be run using HookAnalyser.exe via Option 6 , or can be run directly. The module...

7AI score
Exploits0
ThreatPost
ThreatPost
added 2013/12/19 12:24 p.m.11 views

UN Adopts Resolution Protecting Privacy Online

On the same day that a panel of experts delivered a report to the United States president recommending sweeping changes to the way that the National Security Agency collects, handles and stores intelligence, the United Nations unanimously adopted a resolution calling for the protection of users’...

0.5AI score
Exploits0References2
Rows per page
Query Builder