Threat Outbreak Alert RuleID21367: Email Messages Distributing Malicious Software on February 25, 2016

Medium Alert ID: 43755 First Published: 2016 February 25 16:58 GMT Last Updated: 2016 February 26 13:26 GMT Version: 2 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID2136...

DEBIAN-CVE-2015-8781

tifluv.c in libtiff allows attackers to cause a denial of service out-of-bounds write via an invalid number of samples per pixel in a LogL compressed TIFF image, a different vulnerability than CVE-2015-8782...

UBUNTU-CVE-2015-8781

tifluv.c in libtiff allows attackers to cause a denial of service out-of-bounds write via an invalid number of samples per pixel in a LogL compressed TIFF image, a different vulnerability than CVE-2015-8782...

Threat Outbreak Alert RuleID20491: Email Messages Distributing Malicious Software on February 20, 2016

Medium Alert ID: 43058 First Published: 2016 January 19 13:31 GMT Last Updated: 2016 February 22 16:57 GMT Version: 6 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID20491...

Threat Outbreak Alert RuleID20399: Email Messages Distributing Malicious Software on January 12, 2016

Medium Alert ID: 42981 First Published: 2016 January 12 13:19 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID20399 and RuleID20399KVR may contain the...

UBUNTU-CVE-2015-8665

tifgetimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service out-of-bounds read via the SamplesPerPixel tag in a TIFF image...

[SECURITY] Fedora 22 Update: arts-1.5.10-30.fc22

arts analog real-time synthesizer is the sound system of KDE 3. The principle of arts is to create/process sound using small modules which do certain tasks. These may be create a waveform oscillators, play samples, filter data, add signals, perform effects like delay/flanger/chorus, or output the...

[SECURITY] Fedora 23 Update: arts-1.5.10-30.fc23

arts analog real-time synthesizer is the sound system of KDE 3. The principle of arts is to create/process sound using small modules which do certain tasks. These may be create a waveform oscillators, play samples, filter data, add signals, perform effects like delay/flanger/chorus, or output the...

New Versions of Carbanak Banking Malware Seen Hitting Targets in U.S. and Europe

New variants of the notorious Carbanak Trojan have surfaced in Europe and the United States, and researchers say that the malware now has its own proprietary communications protocol and the samples seen so far have been digitally signed. Carbanak has been in use for several years, and researchers...

Adobe Flash - Out-of-Bounds Memory Read While Parsing a Mutated '.TTF' File Embedded in SWF

Source: https://code.google.com/p/google-security-research/issues/detail?id=363&can=1&q=label%3AProduct-Flash%20modified-after%3A2015%2F8%2F17&sort=id The following access violation was observed in the Adobe Flash Player plugin: 1ba8.1c60: Access violation - code c0000005 first chance First chanc...

Pupils with EasyFuzzer 1.0 mining software vulnerabilities-vulnerability warning-the black bar safety net

EasyFuzzer is a new fuzzing tool. Currently only supports the file format of the fuzzy test. Features: easy, streamlined, efficient, and intelligent. Easy: very easy to use, does not need any configuration. With his elementary students can also dig vulnerability, don't worry there is no 0day...

Threat Outbreak Alert RuleID16858: Email Messages Distributing Malicious Software on August 17, 2015

Medium Alert ID: 40102 First Published: 2015 July 23 19:14 GMT Last Updated: 2015 August 17 13:15 GMT Version: 7 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID16858,...

The vulnerability of Google Chrome browser allows a malicious intruder to gain access to the values of audio samples.

A vulnerability in the Google browser’s implementation of the MediaElementAudioSourceNode::process function in the modules/webaudio/MediaElementAudioSourceNode.cpp module Web Audio API in Blink Chrome can be exploited by an attacker to bypass domain restrictions and access values of audio samples...

Google Chrome Blink Same Origin Policy Bypass Vulnerability

Google Chrome is a web browsing tool developed by Google. The Web Audio API implementation of Blink used in Google Chrome versions prior to 42.0.2311.90 has a security vulnerability in the modules/webaudio/MediaElementAudioSourceNode.cpp file in the ' MediaElementAudioSourceNode::process' functio...

chromium-browser: Cross-origin-bypass in Blink

The MediaElementAudioSourceNode::process function in modules/webaudio/MediaElementAudioSourceNode.cpp in the Web Audio API implementation in Blink, as used in Google Chrome before 42.0.2311.90, allows remote attackers to bypass the Same Origin Policy and obtain sensitive audio sample values via a...

Android 'Trusted Voice': My Voice Is My Password

Today device unlocking has become far more secure over the years, from PIN number unlock to Pattern unlock and biometric unlocks including fingerprinting and facial recognition. But... ...What If Your Android Device Can Identify Your Voice before authenticating any access? This exactly what Googl...

AVCaesar - Malware Analysis Engine and Repository

AVCaesar is a malware analysis engine and repository, developed by malware.lu within the FP7 project CockpitCI. Functionalities AVCaesar can be used to: Perform an efficient malware analysis of suspicious files based on the results of a set of antivirus solutions, bundled together to reach the...

Threat Outbreak Alert RuleID13811: Email Messages Distributing Malicious Software on March 6, 2015

Medium Alert ID: 37719 First Published: 2015 March 4 15:23 GMT Last Updated: 2015 March 6 20:48 GMT Version: 2 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID13811 and...

Facebook Opens ThreatExchange Information Sharing Platform

Facebook, with its giant infrastructure and its equally wide view into Internet attacks, has built an information-sharing platform that it hopes will entice other big technology companies to join and contribute threat data and indicators of compromise. The platform, called ThreatExchange, already...

APT28 — State Sponsored Russian Hacker Group

Nearly a decade-long cyber espionage group that targeted a variety of Eastern European governments and security-related organizations including the North Atlantic Treaty Organization NATO has been exposed by a security research firm. The US intelligence firm FireEye released its latest Advanced...