Iranian Campaign Snooped on U.S. and Israeli Officials

Iranian spies have carried out an intelligence gathering campaign since at least 2011 by targeting U.S. military, diplomats, D.C. journalists, and government emissaries, just to name a few, a via social media. According to iSIGHT Partners, a cyber threat intelligence firm, attackers have long bee...

VUPEN Security Research - Adobe Acrobat & Reader XI-X Barcode Heap Overflow (Pwn2Own)

VUPEN Security Research - Adobe Acrobat & Reader XI-X Barcode Heap Overflow Pwn2Own Website : http://www.vupen.com Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- Adobe Acrobat and Reader are the global standards for electronic document sharing. They are used to create, vie...

Critical Infrastructure Continues to Patch Heartbleed

Unified Automation issued a security advisory warning that its OPC UA software developers kit SDK for Windows contains the OpenSSL cryptography library that is vulnerable to Heartbleed. Schneider Electric, another industrial control system ICS manufacturer, posted its own advisory with mitigation...

IETF To Mitigate Pervasive Monitoring In Future Protocols

The Internet Engineering Task Force IETF has defined pervasive monitoring, otherwise known as unwarranted surveillance and analysis of Internet traffic and even the subversion of cryptographic keys, as an attack and wants future versions of IETF-sponsored protocols to be designed to mitigate it...

Skybox Security 6.3.x - 6.4.x - Multiple Information Disclosure

Exploit for hardware platform in category web applications Exploit Title: SKYBOX Security – Multiple Information Disclosure Date: 22-Jan-2014 Exploit Author: Luigi Vezzoso Vendor Homepage: http://www.skyboxsecurity.com Version: Skybox View Appliances with ISO versions: 6.3.33-2.14, 6.3.31-2.14,...

Former NSA Director Addresses Crypto Standard Subversion

During the last 11 months of mounting leaks and revelations about the government’s surveillance operations and the lengths it will go to gain intelligence on foreign threats, perhaps the most disturbing revelation was the intentional subversion of widely used cryptographic standards. It’s also be...

Judiciary Committee Approves Bill Limiting NSA Surveillance

The House Judiciary Committee met yesterday in a hearing to discuss, amend and approve the USA FREEDOM Act, which aims to rein in the National Security Agency’s surveillance powers and place new limits on authority granted under the USA PATRIOT Act and the Foreign Intelligence Surveillance Act...

Microsoft Identifies New Malware Dropping Sefnit Botnet

Plenty has been written about the Sefnit malware family and its favor with using Tor to mask communication, as well as the money it’s made for criminals via click-fraud schemes. Sefnit, however, has had a pair of accomplices that until recently were regarded as harmless programs by most security...

US Navy's Nuclear Reactor System Administrator Arrested on Hacking Charges

The United States charged two men for their involvement in a conspiracy to hack into the computer systems of dozens of government and commercial organizations, including the U.S. Navy and National Geospatial-Intelligence Agency NGA, according to the U.S. Attorney's Office in Tulsa. On Monday, the...

[CVE-2013-6231] Remote Privilege Escalation in SpagoBI v4.0

Advisory Information Title: Remote Privilege Escalation in SpagoBI Date published: 2013-02-28 Date of last update: 2013-02-28 Vendors contacted: Engineering Group Discovered by: Christian Catalano Severity: High 02. Vulnerability Information CVE reference: CVE-2013-6231 CVSS v2 Base Score: 9...

Draft Bill to Protect Threat Information Sharing

The fear of lawsuits has – for a very long time – been among the primary reasons that public-private cyber-threat information sharing practices have never really materialized. This failure is reality in spite of repeated calls for such partnerships year after year from government and industry...

McAfee Endpoint Intelligence Agent OpenSSL TLS心跳信息泄漏漏洞

CVE ID:CVE-2014-0160 McAfee Endpoint Intelligence Agent是一款McAfee产品中所使用的一个网络服务。 McAfee Endpoint Intelligence Agent所绑定的OpenSSL存在安全漏洞，OpenSSL处理TLS”心跳“扩展存在一个边界错误，允许攻击者利用漏洞获取64k大小的已链接客户端或服务器的内存内容。内存信息可包括私钥，用户名密码等。 0 McAfee Endpoint Intelligence Agent 1.x Formerly Network Integrity Agent McAfee Endpoin...

Routers TCP 32764 Backdoor Vulnerability Secretly Re-Activated Again

At the beginning of this year, we reported about the secret backdoor ‘TCP 32764’ discovered in several routers including, Linksys, Netgear, Cisco and Diamond that allowed an attacker to send commands to the vulnerable routers at TCP port 32764 from a command-line shell without being authenticated...

Government, Private Sector Must Have a 'Need to Share' Mindset on Threats

SAN FRANCISCO–The security of both government and private enterprise systems going forward relies on the ability of those two parties to share threat, attack and compromise information on a real-time basis, former Department of Homeland Security secretary Tom Ridge said. Without that cooperation,...

TIBCO Spotfire多个产品远程代码执行漏洞

CVE ID:CVE-2014-2544 TIBCO Spotfire是业务数据智能分析软件。 TIBCO Spotfire Server 3.3.3及更早版本、4.5.0、5.0.0、5.0.1、5.5.0、6.0.0、6.0.1、TIBCO Spotfire Professional, Web Player、Automation Services、Deployment Kit 4.0.3及之前版本、4.5.0、4.5.1、5.0.0、5.0.1、5.5.0、6.0.0在实现上存在安全漏洞，可使远程攻击者利用此漏洞执行任意代码。 0 TIBCO Spotfire...

NSA denies Report that Agency knew and exploited Heartbleed Vulnerability

The Bloomberg claimed that the U.S. National Security Agency NSA knew about the most critical Heartbleed flaw and has been using it on a regular basis to gather “critical intelligence” and sensitive information for at least past two years and decided to keep the bug secret, citing two sources...

OpenSSL Heartbleed Bug Exploited Before This Week?

Bruce Schneier stood on the Source Boston keynote stage yesterday and used the word “ginormous” to describe the severity of the OpenSSL heartbleed bug. “My guess is that when heartbleed became public, the top 20 governments in the world started exploiting it immediately,” Schneier said. That’s...

Clapper: NSA Queries Databases for Information on U.S. Persons

UPDATE–The NSA searches the data it collects incidentally on Americans, including phone calls and emails, during the course of terrorism investigations. James Clapper, the director of national intelligence, confirmed the searches in a letter to Sen. Ron Wyden, the first time that such actions hav...

Extended Random Extension Made Cracking BSAFE Trivial

UPDATE: Known theoretical attacks against TLS using the troubled Dual EC random number generator— something an intelligence agency might try its hand at—are in reality a bit more challenging than we’ve been led to believe. The addition of the Extended Random extension to RSA Security’s BSAFE...

WordPress Business Intelligence 1.0.6 Shell Upload

Exploit Title : wordpress plugin "wp-business-intelligence" Remote code execution exploit Exploit Author : Manish Kishan Tanwar vendor Home : www.wpbusinessintelligence.com Version Affected: 1.0.6 Discovered At : IndiShell LAB indishell.in aka indian cyber army Love to : zero cool,Team...