Lucene search
K

537 matches found

ThreatPost
ThreatPost
added 2014/05/08 7:46 a.m.14 views

FTC Discusses Regulating User-Generated Health Information

The proliferation of wearable devices coupled with smartphone apps that monitor heart rates and other health metrics raises an important question: How exactly should the information generated by these devices be regulated? If there’s a fist fight in a bar can a person’s Fitbit accelerator be...

6.6AI score
Exploits0References6
The Hacker News
The Hacker News
added 2014/03/24 6:29 p.m.13 views

Snoopy Drone Can Hack Your Smartphones

The use of unmanned aerial vehicles UAVS called Drones is rapidly transforming the way we go to war. Drones were once used for land surveillance, Delivering Pizza's, then equipped with bombs that changed the way nations conduct war and now these hovering drones are ready to hack your Smartphones...

7.3AI score
Exploits0
securityvulns
securityvulns
added 2014/02/11 12:0 a.m.88 views

Security advisory, LedgerSMB 1.3.0-1.3.36

Security Advisory: LedgerSMB 1.3.36, Improper Logout on Some Browsers Severity: Low cvssv2 base score: 3.6, total 0.5 Remotely Exploitable: No Complexity of Attack: High Impact: Relatively low. Prerequisite for Attack: Physical Access to Previously Logged In Browser, so high complexity in most...

7.2AI score
Exploits0
OSV
OSV
added 2014/02/06 8:2 p.m.8 views

MGASA-2014-0036 Updated Firefox & Thunderbird packages fix multiple security vulnerabilities

Updated firefox and thunderbird packages fix security vulnerabilities: Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox or Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user...

10CVSS8.9AI score0.07072EPSS
Exploits7References12
ThreatPost
ThreatPost
added 2014/01/23 3:6 p.m.15 views

Oversight Board Calls NSA Metadata Collection Illegal

Another independent review board investigating the National Security Agency’s collection of phone records metadata has come down hard on the program, calling it illegal, recommending the government end the program, and questioning its effectiveness in ferreting out terrorists. The Privacy and Civ...

0.2AI score
Exploits0References2
ThreatPost
ThreatPost
added 2013/09/25 3:6 p.m.12 views

Some Versions of Ruby on Rails Could Expose Cookies

Versions 2.0 to 4.0 of the popular open source Web framework Ruby on Rails are vulnerable to a Web security issue involving cookies that could make it much easier for someone to log in to an app as another user. According to security researcher G.S. McNamara, Ruby on Rails’ defacto session storin...

1AI score
Exploits0References4
ThreatPost
ThreatPost
added 2013/09/19 2:13 p.m.15 views

Experts Worry About Long-Term Implications of NSA Revelations

With all of the disturbing revelations that have come to light in the last few weeks regarding the NSA’s collection methods and its efforts to weaken cryptographic protocols and security products, experts say that perhaps the most worrisome result of all of this is that no one knows who or what...

7AI score
Exploits0References2
Jake Archibald's Blog
Jake Archibald's Blog
added 2013/08/09 3:5 p.m.10 views

Having fun with

Did you know that this works in every browser? Look, here's one: An image You might think it's leaking from SVG, but SVG images don't use src, they use xlink:href. Let's all take a moment to laugh at xlink. Done? Ok… In the first age of the web, some people accidentally typed instead of . Browser...

1.5AI score
Exploits0
Kitploit
Kitploit
added 2013/04/15 9:7 p.m.14 views

[Topera] The IPv6 port scanner invisible to Snort (IDS)

Topera is a brand new TCP port scanner under IPv6 , with the particularity that these scans are not detected by Snort. Snort is the most known IDS/IPS and is widely used in many different critical environments. Some commercial tools Juniper or Checkpoint ones use it as detection engine also...

7.3AI score
Exploits0
ThreatPost
ThreatPost
added 2013/03/13 6:40 p.m.10 views

Google to Pay $7M Settlement Over Street View Data Collection

Google has agreed to pay a $7 million settlement to several dozen U.S. states as part of an agreement of charges that the company was collecting private user data from WiFi hotspots while its Street View cars were driving around taking photos in various locations. The controversy over Google’s...

2.1AI score
Exploits0References4
OpenVAS
OpenVAS
added 2013/03/11 12:0 a.m.23 views

SuSE Update for update openSUSE-SU-2012:1620-1 (update)

Check for the Version of update OpenVAS Vulnerability Test $Id: gbsuse201216201.nasl 8456 2018-01-18 06:58:40Z teissa $ SuSE Update for update openSUSE-SU-2012:1620-1 update Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program ...

7.5CVSS7.6AI score0.12849EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2012/12/28 5:5 p.m.13 views

Hackers abusing online Nmap Port Scanning service

Most of you knows the power of Nmap, When used properly, Nmap helps protect your network from invaders. One of the best tool for hackers, penetration testers and Security researchers. Officially Nmap a desktop tool, can be used as web version but should be under some limitations. When someone doe...

6.5AI score
Exploits0
Packet Storm
Packet Storm
added 2012/12/11 12:0 a.m.34 views

Microsoft Internet Explorer Mouse Tracking

Summary: Unprivileged attackers can track your system-wide mouse movements from any IE page, even when the page is unfocused or minimised. Package: Microsoft Internet Explorer Affected: Tested on versions 6–10 Introduction ----------------- A security vulnerability in Internet Explorer, versions...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.32 views

Scientific Linux Security Update : rpm on SL4.x i386/x86_64

It was discovered that RPM did not remove setuid and setgid bits set on binaries when upgrading or removing packages. A local attacker able to create hard links to binaries could use this flaw to keep those binaries on the system, at a specific version level and with the setuid or setgid bit set,...

7.2CVSS7.2AI score0.00399EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2012/07/05 12:0 a.m.26 views

Fedora 16 : boost-1.47.0-7.fc16 (2012-9029)

This update fixes a bug in Boost.Pool, which could under certain circumstances overflow allocated chunk size. This could have security implications for applications that use Boost pool without sanitizing pool parameters. - Add a sub-package boost-math with math-related bits from Boost.TR1. This...

5CVSS8.2AI score0.03889EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2012/06/28 12:0 a.m.23 views

Fedora 17 : boost-1.48.0-13.fc17 (2012-9818)

This update fixes a bug in Boost.Pool, which could under certain circumstances overflow allocated chunk size. This could have security implications for applications that use Boost pool without sanitizing pool parameters. - Boost.Locale library now contains backend code, which was left out before...

5CVSS8.2AI score0.03889EPSS
Exploits1References4
ThreatPost
ThreatPost
added 2012/05/23 2:1 p.m.11 views

Common Firewall Feature Enables TCP Hijacking Attacks

Attackers using a feature that is common to many firewalls, switches and other networking gear could silently hijack Web sessions on mobile and desktop devices, according to a research paper presented by two Ph.D students from the University of Michigan. The two discovered that so-called TCP...

0.3AI score
Exploits0References2
The Hacker News
The Hacker News
added 2012/05/05 5:58 p.m.7 views

Hacktivism - The Hacker News Magazine - May 2012 Issue

Welcome cyber space readers and internet junkies from around the world. May brings us into an in-depth look at our favorite topic: Hacktivism Our fearless leader, Mohit Kumar, founder of The Hacker News opens the discussion with a look at the meaning of Hackitivism and what it means for society...

6.7AI score
Exploits0
ThreatPost
ThreatPost
added 2012/04/18 2:41 a.m.7 views

Critics Continue Pushing for Bigger Probe into Google Street View Practices

Privacy advocates continue urging for a wider federal investigation into Google Street View practices following Google’s $25,000 fine for stonewalling federal officials during an earlier probe of Wi-Fi snooping allegations. The Federal Communications Commission late last week gave the Internet...

6.8AI score
Exploits0
ThreatPost
ThreatPost
added 2011/12/15 3:38 p.m.15 views

Generation Y Won't Listen To IT

The latest generation of desk-jockey’s admitted in a recent CISCO study that they frequently ignore and/or circumvent the information technology IT policies of their employers, heightening corporate risk. The CISCO Connected World Technology Report surveyed some 2,800 college students and young...

0.1AI score
Exploits0References1
Rows per page
Query Builder