Hacker reported vulnerability in Kaspersky website; Demonstrated malware spreading technique

The cyber Security Analyst 'Ebrahim Hegazy' @Zigoo0 Consultant at Q-CERT has found an "Unvalidated Redirection Vulnerability" in the website of the giant security solutions vendor "Kaspersky". Ebrahim, who found a SQL Injection in "Avira" website last month, this time he found a Unvalidated...

Trustport Webfilter 5.5.0.2232 - Directory Traversal Vulnerability

Exploit for windows platform in category web applications Trustport Webfilter Remote File Access Vulnerability ==================================================== Affected Product ---------------- Product Name: Trustport Webfilter Product Version: 5.5.0.2232 Platform: Microsoft Windows...

Barracuda LB / SVF / WAF / WEF Cross Site Scripting

Title: ====== Barracuda LB, SVF, WAF & WEF - Multiple Vulnerabilities Date: ===== 2013-07-18 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=727 Note: The issue was part of the official Barracuda Networks Bug Bounty Program. VL-ID: ===== 727 Common Vulnerability Scoring...

Peer-to-Peer Botnet Takedowns a Challenge

The FBI, Justice Department and technology companies have had success shutting down botnets that rely on a centralized infrastructure and command and control servers to communicate with bots, steal data or send malicious commands. Peer-to-peer botnets, however, have proven more difficult to take...

vBulletin 5b SQL Injection

!/usr/bin/perl Satuday, March 30, 2013 . . | || || | || \ / | / \ / | |/ \ / \ | || || |\ // // | \ / /\ /||/|| / |||| // / http://www.zempirians.com 00100011 01101100 01100101 01100111 01101001 01101111 01101110 Proof of Concept, SQL Injection vBulletin™ is the world leader in forum and...

Reputation.com Notifies Customers of Network Attack

A company known for burying bad information to improve its customers’ online images let everyone know this week its network was hacked. Reputation.com sent e-mails to thousands of customers in more than 100 countries to let them know of the attack. In a message sent earlier this week, the company...

vBulletin 5 Beta index.php/ajax/api/reputation/vote/ SQL注入漏洞

No description provided by source...

Spammers Finding Favor with Google Translate

Some spammers, looking to launder the dirty links they email you, are relying on the positive reputation of Google Translate to redirect victims to rogue websites. Researchers at Barracuda Labs who maintain the company’s spam honeypots have spotted a rash of illicit messages trying to beat...

What's the Meaning of This: Adobe Certificate Attack

The news yesterday that Adobe had been compromised and that the attackers were able to get valid Adobe signatures on a pair of malware utilities is one of the more worrisome and troubling stories in what has become a year of huge hacks and historic change in the security industry. Adobe was...

Report: Bandwith-Burning Malware Among Biggest Consumer Threats

A new malware report indicates Android malware samples grew three-fold last quarter and that one in every 140 devices connected to mobile networks was infected at some point. Closer to home, about 14 percent of household networks were hit by malware this spring, with a 50 percent increase in...

April 2011 – Sony PSN

Executives at Sony probably didn’t anticipate that a lawsuit against technology whiz kid George Hotz would end up backfiring as spectacularly as it did. The missing ingredient? The hacktivist group Anonymous, which adopted Hotz as a cause célèbre and retaliated with an attack on Sony’s Play Stati...

Role of free Hosting in Cyber Crime

Role of free Hosting in Cyber Crime Zscaler experts notice that free hosting and DNS providers abused for hosting Phishing Pages, Spamming, Botnets or Malwares. Many free hosted sites considered as spam. They list "x90x.net" Free hosting Provider which used to host many Facebook Phishing sites...

Zulu - Zscaler Malware Scanning Service

Zulu - Zscaler Malware Scanning Service Zscaler has launched a new freE online service called Zulu that can assess the security risk associated with URLs by analyzing the content they point to, as well as the reputation of their corresponding domain names and IP addresses. Zulu allows security...

Official Android Market host many Malware Games

Official Android Market host many Malware Games F-Secure researchers recently found malware in the Android Market disguised as free versions of popular games. Disguising malware as a free version of a popular game such as Cut the Rope and Assassin's Creed seems to be a popular tactic that the bad...

Web of Trust (WOT) Wins in Court, Favors freedom of speech

Web of Trust WOT Wins in Court, Favors freedom of speech The world's leading safe surfing tool Web of Trust WOT has won the lawsuit filed against it in the United States. WOT was accused of defamation, violating rights, conspiracy and manipulating algorithms. The court of justice in Florida grant...

Attackers Adjusting Tactics to Evade Reputation Systems

BARCELONA–As in life, reputations on the Internet take time to build up. Attackers interested in making a quick buck aren’t necessarily the most patient lot, so as the various repuation systems on the Web have gotten more sophisticated and accurate, the bad guys have had to adjust their tactics a...

PlayStation Network Stronger Than Ever, Says Sony Exec

In the wake of what will likely go down as the biggest gaming failure since Virtual Boy, Sony chief executive, Howard Stringer claims the PlayStation Network is more secure than ever, according to a report from CNET. “I’m pleased to tell you that the PSN is more secure and better than ever,”...

Cyber Defense Summit 2011

On September 14, we will be partnering with InfraGards New York City Alliance to host a one-day Cyber Defense Summit. This year we have seen a drastic increase in data breaches. As these hacks have become daily occurrences, enterprises must learn how to protect their data while simultaneously...

IE 9 Catches Most Web-Based Malware Attacks, Test Shows

A new report shows that the latest version of Internet Explorer, equipped with some new anti-malware functionality, catches more Web-based malware attacks than any of the other major browsers on the market. IE 9 caught nearly 100 percent of the attacks thrown at it in a new test done by NSS Labs...

Timesofmoney Database Hacked using Sql Injection Vulnerability

Timesofmoney Database Hacked using Sql Injection Vulnerability General Information About the Vulnerability This is again a critical vulnerability discovery made by zSecure Team in TimesofMoney website. The group claims that there exist a critical SQL Inejction Vulnerability in the timesofmoney's...