Iran's Intelligence Minister Admits to Hacking Opposition Emails

Iran's Intelligence Minister, Heydar Moslehi, has publicly admitted to hacking the emails of opposition members. Iranian news agencies, including ILNA, quoted Moslehi stating that emails were the primary communication tool for opposition members during last year's postelection protests. The...

Germany to create cyber defense center !

Germany is planning the creation of a national cyber defense center in 2011 in reaction to a growing number of cyber attacks on government institutions that mostly originate in China. An interior ministry spokesman said Monday that while in 2009 the government registered only 900 attacks, there...

VUPEN Security Research - Microsoft Office Publisher Record Array Indexing Vulnerability (VUPEN-SR-2010-201)

VUPEN Security Research - Microsoft Office Publisher Record Array Indexing Vulnerability VUPEN-SR-2010-201 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Microsoft Publisher, is a desktop publishing application from Microsoft. It is an entry-level application,...

VUPEN Security Research - RealPlayer RA5 Data Handling Heap Overflow Vulnerability (VUPEN-SR-2010-31)

VUPEN Security Research - RealPlayer RA5 Data Handling Heap Overflow Vulnerability VUPEN-SR-2010-31 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "RealPlayer is a media player available to play, manage and download all your mp3, flash and video files" from real.com...

Razorback v0.1.3 - new release download

"Razorback is a framework for an intelligence driven security solution. It consists of a Dispatcher at the core of the system, surrounded by Nuggets of varying types." Again, we haven't been able to find the change log for this release. Download Razorback v0.1.3 here. Found this article...

VUPEN Security Research - Apple Safari Scrollbar Handling Use-after-free Vulnerability (VUPEN-SR-2010-245)

VUPEN Security Research - Apple Safari Scrollbar Handling Use-after-free Vulnerability VUPEN-SR-2010-245 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Apple Safari is a web browser developed by Apple. As of February 2010, Safari was the fourth most widely used...

New Bill Would Give DHS New Power Over Private Networks

The latest in what has become a long line of legislation introduced in the House and the Senate in 2010 that attempts to address the country’s computer security shortcomings is a new measure brought forward by Rep. Bennie Thompson that would, among other things, allow the to force certain private...

Firm Scores $29M for Anti Botnet-As-A-Service

Endgame Systems is expanding from the government sector to commercial anti botnet services with a $29 million investment. The headlines in recent months have been filled with news about busts of major botnet operations – Bredolab, Pushdo, Waldec and Mariposa among them. But botnets are still a...

Oracle BI Publisher HTTP Response Splitting

Digital Security Research Group DSecRG Advisory DSECRG-09-029 Application: Oracle Business Intelligence Enterprise Edition 10.1.3.4.0 Versions Affected: Oracle Business Intelligence Enterprise Edition 10.1.3.4.0 Vendor URL: http://oracle.com Bugs: Response Splitting/XSS/phishing credentials...

VUPEN Security Research - Microsoft Office Word Document Array Indexing Vulnerability (CVE-2010-2750)

VUPEN Security Research - Microsoft Office Word Document Array Indexing Vulnerability CVE-2010-2750 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- Microsoft Office Word, included in the Microsoft Office suite, is a powerful authoring program that gives the ability t...

Design/Logic Flaw

Unspecified vulnerability in the Oracle E-Business Intelligence component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows remote attackers to affect integrity via unknown vectors...

CVE-2010-2416

CVE-2010-2416 affects Oracle E-Business Intelligence within Oracle E-Business Suite (11.5.10.2, 12.0.6, 12.1.3). The description indicates an unspecified vulnerability allowing remote integrity impact via unknown vectors. Connected sources show this CVE is listed in Oracle’s October 2010 CPU as a...

Rethinking Stuxnet

It’s hard to think of a story in the last few years that has generated more hype, conjecture, posturing, hyperbole and misdirection than Stuxnet, with the possible exception of the Aurora attacks. The commentary and hype around Stuxnet has shifted and morphed over the last few months, and now it...

Microsoft Excel - Malformed FEATHEADER Record (MS09-067) (Metasploit)

$Id: ms09067excelfeatheader.rb 10477 2010-09-25 11:59:02Z mc $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Researchers Cripple Pushdo Botnet

Researchers have made a huge dent in a major variant of the Pushdo botnet, virtually crippling the network by working with hosting providers to take down about two thirds of the command-and-control servers involved in the botnet. Pushdo for years has been one of the major producers of spam and...

VUPEN Security Research - Microsoft Internet Explorer "CIframeElement" Object Use-after-free Vulnerability (CVE-2010-2558)

VUPEN Security Research - Microsoft Internet Explorer "CIframeElement" Object Use-after-free Vulnerability CVE-2010-2558 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Microsoft Internet Explorer is a web browser developed by Microsoft and included as part of the...

VUPEN Security Research - Adobe Acrobat and Reader "newfunction" Memory Corruption Vulnerability (CVE-2010-2168)

VUPEN Security Research - Adobe Acrobat and Reader "newfunction" Memory Corruption Vulnerability CVE-2010-2168 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Adobe Acrobat and Reader are the global standards for electronic document sharing. They are used to create,...

Researcher to Release Hacker Footprint Tool

A researcher at Black Hat USA next month plans to give away a homemade tool that helps organizations glean intelligence about the attacker behind the malware that includes information about native tongue, geographic location, and ties to other attacks. Read the full article. Dark Reading...

IBM Cognos Server Backdoor Account Remote Code Execution (CVE-2010-0557)

IBM Cognos Express is an integrated business intelligence BI and planning solution developed for midsized companies. It provides reporting, analysis, dashboard, scorecard, planning, budgeting and forecasting capabilities. A remote code execution vulnerability has been reported in IBM Cognos...

Friending HR: A Rich and Mineable Source of Intelligence

One of the most common complaints I hear from information security executives in large organizations is that they are constantly playing defense, not offense. Their network security apparatus is designed to wait for an attack, see if it’s successful and, if it is, to plug the hole, then repeat. T...