Lucene search
K

985 matches found

Information Security Automation
Information Security Automation
added 2017/05/03 4:14 p.m.38 views

My comments on Forrester’s “Vulnerability Management vendor landscape 2017”

A top consulting company, Forrester Research, recently published report "Vendor Landscape: Vulnerability Management, 2017". You can read for free by filling a small form on Tenable web site. What's interesting in this document? First of all, Josh Zelonis and co-authors presented their version of ...

7.1AI score
Exploits0
HackRead
HackRead
added 2017/05/03 3:22 p.m.18 views

Shodan’ Malware Hunter to Expose Command & Control Centers of Botnets

By Jahanzaib Hassan Recorded Future, a threat intelligence company together with Shodan, which is an internet search engine connecting services to internet devices, have created an online crawler which they call the Malware Hunter. What does it do? The Malware Hunter is a program that sends out...

7AI score
Exploits0
ThreatPost
ThreatPost
added 2017/05/02 2:39 p.m.9 views

Malware Hunter Crawls Internet Looking for RAT C2s

A new crawler released today by Shodan designed to find command and control servers has already unearthed 5,800 controllers for more than 10 remote access Trojan RAT families. The crawler, called Malware Hunter, poses as an infected computer beaconing out to an attacker’s server waiting for...

7.8AI score
Exploits0References5
The Hacker News
The Hacker News
added 2017/05/02 6:53 a.m.14 views

Malware Hunter — Shodan's new tool to find Malware C&C Servers

Rapidly growing, insecure internet-connected devices are becoming albatross around the necks of individuals and organizations with malware authors routinely hacking them to form botnets that can be further used as weapons in DDoS and other cyber attacks. But now finding malicious servers, hosted ...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2017/05/01 3:50 p.m.18 views

Dan Geer: Cybersecurity, Humanity's Future "Conjoined"

Given the intertwinement of technology with communication, politics, economies and overall human progress, it seems to go hand-in-hand that cybersecurity must be elevated in parallel. Dan Geer, considered atop the food chain of security thinkers, said during last week’s Source Boston conference...

0.3AI score
Exploits0References2
Akamai Blog
Akamai Blog
added 2017/04/20 10:38 a.m.16 views

The 'Audience of You' at NAB

It's all about the "audience of you" as Akamai gears up for next week's 2017 NAB Show in Las Vegas. With that phrase, we're talking about helping to deliver the best possible experiences for each and every OTT video viewer. It's not an easy thing to do, but we're demonstrating a host of new...

6.9AI score
Exploits0
ThreatPost
ThreatPost
added 2017/04/18 8:23 a.m.15 views

Low-Cost Ransomware Service Discovered

A new ransomware as a service RaaS called Karmen has been discovered by security researchers at Recorded Future. This service allows anyone, including novices, to set up an account and customize their own ransomware campaign. The Karmen RaaS costs $175 and lets buyers set ransom prices, determine...

Exploits0References5
Openbugbounty
Openbugbounty
added 2017/03/28 6:22 p.m.24 views

future.museum.ru XSS vulnerability

Vulnerable URL: http://www.future.museum.ru/lmp/link.asp?back=books/consept.htm=javascript:alert%28/OPENBUGBOUNTY/%29 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not...

6.3AI score
Exploits0
ThreatPost
ThreatPost
added 2017/03/20 10:35 a.m.5 views

Jon Oberheide on Perimeter Security

Mike Mimoso talks to Duo Security co-founder and CTO Jon Oberheide at RSA Conference about Google’s BeyondCorp security model, enforcing perimeter security, how endpoint security has evolved through the years, and the future of passwords. Download: JonOberheideonPerimeterSecurity.mp3 Music by Chr...

3.2AI score
Exploits0References3
hackapp
hackapp
added 2017/03/16 5:39 p.m.20 views

Horoscope - your astro future - Dangerous filesystem permissions, Exported ContentProvider, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Horoscope - your astro future published at the 'play' market has multiple vulnerabilities...

1.2AI score
Exploits0References1Affected Software1
NVD
NVD
added 2017/01/06 9:59 p.m.21 views

CVE-2016-1548

An attacker can spoof a packet from a legitimate ntpd server with an origin timestamp that matches the peer-dst timestamp recorded for that server. After making this switch, the client in NTP 4.2.8p4 and earlier and NTPSec aa48d001683e5b791a743ec9c575aaf7d867a2b0c will reject all future legitimat...

7.2CVSS6.2AI score0.03844EPSS
Exploits3References34
Veracode
Veracode
added 2016/12/08 5:23 a.m.15 views

Sanity Check Bypass

PySAML2 is vulnerable to sanity bypass. By failing a check and not causing an exception, malicious attackers can bypass all future checks. These checks can be failed by setting a wrong value for the destination or using a mismatched response ID...

6.7AI score
Exploits0
ThreatPost
ThreatPost
added 2016/12/06 1:58 p.m.81 views

Flash Exploit Found in Seven Exploit Kits

A nasty Adobe Flash zero-day vulnerability that was remediated in an emergency update in October 2015 was thereafter co-opted by seven exploit kits, according to an analysis published today by researchers at Recorded Future. The Adobe vulnerability, CVE-2015-7645, was also used by the Russian APT...

10CVSS9.5AI score0.94354EPSS
Exploits16References8
The Hacker News
The Hacker News
added 2016/10/17 7:2 a.m.13 views

Julian Assange is not Dead, but his Internet Connection is Cut by 'State Party'

Don't worry — Julian Assange is alive and kicking! But his Internet connection is dead. Earlier today, Wikileaks tweeted that its co-founder, Julian Assange, had his internet connection intentionally cut by an unidentified "state party." The non-profit organization said it had "activated...

7AI score
Exploits0
hackapp
hackapp
added 2016/04/01 9:17 a.m.17 views

Future TV Lebanon - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Future TV Lebanon published at the 'play' market has multiple vulnerabilities...

0.7AI score
Exploits0References1Affected Software1
The Hacker News
The Hacker News
added 2016/01/20 11:35 p.m.43 views

Apple testing Ultra-Fast Li-Fi Wireless Technology for Future iPhones

Apple to make future iPhones compatible with a cutting-edge technology that has the capability to transmit data at 100 times the speed of WiFi, suggests the code found within the iOS firmware. Apple may ship future iPhones with Li-Fi capabilities, a new technology that may end up replacing the...

6.7AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/01/20 6:19 p.m.12 views

futureelectronics.es Open Redirect vulnerability

Vulnerable URL: http://www.futureelectronics.es/es/manufacturers/te-connectivity/Paginas/redir.ashx?ciid=5489=Advertising=207=http://www.xssposed.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| Open Redirect Vulnerability status:|...

6.9AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/01/05 12:15 a.m.9 views

futureproducers.com Open Redirect vulnerability

Vulnerable URL: http://www.futureproducers.com/forums/redirect-to/?redirect=http://xssposed.org/ Details: Description| Value ---|--- Patched:| Yes, at 26.07.2017 Latest check for patch:| 26.07.2017 11:55 GMT Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank|...

6.9AI score
Exploits0
ThreatPost
ThreatPost
added 2015/12/08 7:0 a.m.11 views

Experts Say Bitcoin Extortionist Copycats on the Rise

Experts believe that the success tied to a recent spate of DDoS-for-hire groups may be because many are copycat collectives operating with a shorter lifespan. Researchers with Recorded Future, a Massachusetts-based firm that tracks real time threat intelligence, said Monday that they’ve noticed a...

0.2AI score
Exploits0References4
ThreatPost
ThreatPost
added 2015/06/25 11:38 a.m.30 views

Stolen U.S. Government Credentials Found Online

Credentials stolen in breaches and sundry hacks belonging to close to 100 unique U.S. government domains are scattered among a number of paste sites and are searchable in other locations online. Analysts at Recorded Future said on Wednesday that through open source intelligence gathering and...

0.2AI score
Exploits0References6
Rows per page
Query Builder