November 1, 2017 – Morning Cyber Coffee Headlines – “November” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! November 1, 2017 - Headlines Carbon Black in the News: How to Make a Ransomware...

sgtbkhalsadu.ac.in XSS vulnerability

Vulnerable URL: http://www.sgtbkhalsadu.ac.in/viewgallery1.jsp?topic=Election%20Duty%20list=%22%3E%3Csvg/onload=alert/XSSPOSED/%3E=1127090920171818441.pdf&image1;=&image2;=&image3;=&image4;=&image5;=&image6;=&image7;=&image8;=&image9;=&image10;==admin Details: Description| Value ---|--- Patched:|...

Proof It's Possible to Hack German Elections; Hackers Tamper with Voting-Software

Germany's democracy is in danger, as the upcoming federal elections in the country, where nearly 61.5 million citizens are going to vote on September 24th, could be hijacked. Hackers have disclosed how to hack the German voting software to tamper with votes and alter the outcome of an election...

dbt-hive (>=1.1.5 <=1.11.0), dbt-impala (>=1.1.4 <=1.3.1) +30 more potentially affected by CVE-2015-3206 via kerberos (>=1.1.1 <=1.3.1)

kerberos PYPI version =1.1.1, =1.1.5, =1.1.4, =0.1.0, =1.0.5, =0.1.0, =6.0.0, =0.2.0, =0.1.0, =0.0.1, =0.0.2, =2017.3.3, =0.1.0, =0.0.1, =1.6.16 and more Source cves: CVE-2015-3206 Source advisory: OSV:PYSEC-2017-49...

August 23, 2017 – Morning Cyber Coffee Headlines – “Boston Celtics” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! August 23, 2017 - Headlines No U.S.-Russia Cyber Unit Without Trump Notifying...

Vendor Exposes Backup of Chicago Voter Roll via AWS Bucket

Voter registration data belonging to the entirety of Chicago’s electoral roll—1.8 million records—was found a week ago in an Amazon Web Services bucket configured for public access. The data was a backup stored in AWS by Election Systems & Software ES&S, a voting machine and election management...

Voting Machines Hacked with Ease at DEF CON

LAS VEGAS—Hackers at DEF CON last week made quick work of finding vulnerabilities in electronic pollbooks and voting machines, needing just 90 minutes to find exploitable flaws in every piece of voting equipment. More than 30 machines were available for hackers to crack at the conference’s Voting...

Hackers Take Over US Voting Machines In Just 90 Minutes

--- Image Credit: @tjhorner Today, election hacking is not just about hacking voting machines, rather it now also includes hacking and leaking dirty secrets of the targeted political parties—and there won’t be a perfect example than the last year's US presidential election. But, in countries like...

July 14, 2017 – Morning Cyber Coffee Headlines – “Bastille Day” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! July 14, 2017 - Headlines Carbon Black in the News: US Voters Consider Russia t...

Election (In)Security: 1 in 4 Voters May Skip 2018 Midterm Elections Over Hacking Fears

United States voters have had no shortage of cybersecurity news related to elections in recent months, ranging from allegations of Russian interference to revelations that specific states were targeted in attack campaigns. Among some of the frequent topics being discussed in the news have been...

July 12, 2017 – Morning Cyber Coffee Headlines – “Henry David Thoreau” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! July 12, 2017 - Headlines Carbon Black in the News: Closing Bell July 11, 2017 ...

stroudnewsandjournal.co.uk XSS vulnerability

Vulnerable URL: http://www.stroudnewsandjournal.co.uk/news'-alert'OPENBUGBOUNTY'-'/8152626.StroudgeneralelectionLIVERESULTNeilCarmichaelisStroudsnewMP// Details: Description| Value ---|--- Patched:| No Latest check for patch:| 23.08.2017 Vulnerability type:| XSS Vulnerability status:| Publicly...

Commentary on US Election Security

Good commentaries from Ed Felten and Matt Blaze. Both make a point that I have also been saying: hacks can undermine the legitimacy of an election, even if there is no actual voter or vote manipulation. Felten: The second lesson is that we should be paying more attention to attacks that aim to...

results.elections.myflorida.com XSS vulnerability

Open Bug Bounty ID: OBB-257061 Description| Value ---|--- Affected Website:| results.elections.myflorida.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

This Week in Security News

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. Below you’ll find a quick recap of topics followed by links to news articles and/or our blog posts providing additional insight. Be sure to check back...

aectorg.yourwebhosting.com XSS vulnerability

Vulnerable URL: http://aectorg.yourwebhosting.com/Election/Bios/Bio.asp?race=1"...

June 22, 2017 – Morning Cyber Coffee Headlines – “Galileo Galilei” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! June 22, 2017 - Headlines Carbon Black in the News: WannaCry Ups The Stakes For...

NSA Document Outlining Russian Attempts to Hack Voter Rolls

This week brought new public evidence about Russian interference in the 2016 election. On Monday, the Intercept published a top-secret National Security Agency document describing Russian hacking attempts against the US election system. While the attacks seem more exploratory than operational ­--...

FBI Arrests NSA Contractor for Leaking Secrets – Here's How they Caught Her

The FBI arrested a 25-year-old NSA contractor on Saturday 3rd June for leaking classified information to an online news outlet which published its report yesterday 5th June — meaning the arrest was made two days before the actual disclosure went online. Reality Leigh Winner, who held a top-secret...

Putin: Hackers Are Like Artists, Who Wake Up In A Good Mood & Start Painting

Just control your laughter, while reading this article. I insist. Talking to international media at the St Petersburg Economic Forum on Thursday, Russian President Vladimir Putin made a number of statement surrounding alleged Russia's involvement in hacking. If you are not aware, Russia has been...