4.9 Million Affected in Military Healthcare Breach

Military health service providers, TRICARE and Science Applications International Corporation SAIC report a data breach of involving the personal information of an estimated 4.9 million military clinic and hospital patients. The lost data was stored on back-up tapes that contained patient health...

Firm Claims To Break Blackberry Device Password

Research in Motion’s phones are considered the premiere maker of enterprise-grade mobile devices. But now a Russian firm says that a forensics tool it developed can reliably crack strong passwords used to secure the company’s BlackBerry phones. Elcomsoft, a computer forensics software maker, said...

HTTPS SSL encryption Vulnerable To Crypto Attack

HTTPS SSL encryption Vulnerable To Crypto Attack The secure sockets layer SSL and transport layer security TLS encryption protocol, used by millions of websites to secure Web communications via HTTPS, is vulnerable to being decrypted by attackers. Researchers have discovered a serious weakness in...

JonDo 00.15.004 IP changer with Bitcoin, connection manipulation protection and higher efficiency

JonDo 00.15.004 IP changer with Bitcoin, connection manipulation protection and higher efficiency JonDos publishes a new version of the JonDo-Software, an IP changer and IP anonymization program, that you can use for anonymous surfing in the Internet with high security anonymous proxy servers. Wh...

PGP Website - Multiple Cross Site Scripting Vulnerabilities

Document Title: =============== PGP Website - Multiple Cross Site Scripting Vulnerabilities Release Date: ============= 2011-07-16 Vulnerability Laboratory ID VL-ID: ==================================== 95 Product & Service Introduction: =============================== PGP Corporation is a global...

PGP Website - Multiple Cross Site Scripting Vulnerabilities

Document Title: =============== PGP Website - Multiple Cross Site Scripting Vulnerabilities Release Date: ============= 2011-07-16 Vulnerability Laboratory ID VL-ID: ==================================== 95 Product & Service Introduction: =============================== PGP Corporation is a global...

EFF Argues Forced Decryption Violates Fifth Amendment

Digital civil liberties organization, the Electric Frontier Foundation EFF, appealed to the U.S. District Court of Colorado arguing that encrypted personal data is covered by the Fifth Amendment’s protection against self incrimination. The group submitted a brief of Amicus Curaie .PDF last week o...

Role of Hacking in Stealing and Selling Credit Cards !

Role of Hacking in Stealing and Selling Credit Cards ! People use the Internet in their everyday lives. With technology advancing as fast as it is, most modern day homes have gone online, turning to the Internet to save time with busy days, performing simple tasks like online banking, purchasing...

SuSE 10 Security Update : pidgin (ZYPP Patch Number 6710)

This update of pidgin fixes the following issues : - Allowed to send confidential data unencrypted even if SSL was chosen by user. CVE-2009-3026: CVSS v2 Base Score: 5.0 - Remote denial of service in yahoo IM plug-in. CVE-2009-3025: CVSS v2 Base Score: 4.3 - Remote denial of service in MSN plug-i...

Tips for Make Mobile Banking Safe And Secure !

As we all know that wireless applications have numbers of vulnerabilities higher then the wired applications and the devices. In India there are not lots of people who do banking through mobile but outside India there are high profile countries in which many people do banking through mobile only....

Amazon Cloud Can Be Used to Hack Into Networks !

A Germany-based security researcher says he can hack into protected networks using software that runs on Amazon's cloud-based computers, according to a Reuters report. Thomas Roth, a computer security consultant based in Cologne, Germany, says he has "figured out a quick and inexpensive way to...

Hack Record Book

Записная книга для хранения и обработки найденных на сайтах уязвимостей. Можно сохранить: + Ссылку. + Описание уязвимости. + ТИЦ, PR можно узнать автоматически. + Alexa rate. + Google indexed|not filtered pages count. + Дату и время записи. + Рейтинг уязвимости. + Ваши личные заметки по данному...

8) Your next wallet is a phone. Discuss.

Mobile payments have been going strong in countries like Japan and Finland for years now. In the U.S., however, its taken longer for mobile payments to get a hold on consumers. That’s all about to change. Late model mobile devices like Apple’s iPhone and Google Android-based phones now offer...

Information disclosure

EncFS before 1.7.0 encrypts multiple blocks by means of the CFB cipher mode with the same initialization vector, which makes it easier for local users to obtain sensitive information via calculations involving recovery of XORed data, as demonstrated by an attack on encrypted data in which the las...

Moderate: Red Hat Security Advisory: gnupg2 security update

An updated gnupg2 package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Moxie Marlinspike on RedPhone, TextSecure and Internet Privacy

Dennis Fisher talks with security researcher Moxie Marlinspike about his new startup, Whisper Systems, his RedPhone and TextSecure voice and data encryption software and the challenges of maintaining privacy in the Google Age. Podcast audio courtesy of sykboy65 Subscribe to the Digital Undergroun...

CVE-2009-2752

IBM WebSphere Commerce 7.0 does not properly encrypt data in a database, which makes it easier for local users to obtain sensitive information by defeating cryptographic protection mechanisms...

Information disclosure

IBM WebSphere Commerce 7.0 does not properly encrypt data in a database, which makes it easier for local users to obtain sensitive information by defeating cryptographic protection mechanisms...

CVE-2009-2752

CVE-2009-2752 affects IBM WebSphere Commerce 7.0. The vulnerability is a failure to properly encrypt data in the database, which can allow local users to obtain sensitive information by defeating cryptographic protections. The available documents do not specify affected components, root cause det...

openSUSE Security Update : finch (finch-1625)

This update of pidgin fixes the following issues : - CVE-2009-3026: CVSS v2 Base Score: 5.0 Allowed to send confidential data unencrypted even if SSL was chosen by user. - CVE-2009-3025: CVSS v2 Base Score: 4.3 Remote denial of service in yahoo IM plug-in. - CVE-2009-3083: CVSS v2 Base Score: 5.0...