SoftPerfect Connection Quality Monitor 安全漏洞

SoftPerfect Connection Quality Monitor is a software from SoftPerfect Australia for monitoring the quality of Internet connections. A security vulnerability exists in SoftPerfect Connection Quality Monitor v1.1, which stems from credentials being stored in plaintext...

ECOA Building Automation System Directory Traversal Vulnerability

ECOA building automation systems suffer from directory traversal vulnerability that allows for content disclosure. Many versions are affected. ECOA Building Automation System Directory Traversal Content Disclosure Vendor: ECOA Technologies Corp. Product web page: http://www.ecoa.com.tw Affected...

ECOA Building Automation System Arbitrary File Deletion Vulnerability

ECOA building automation systems suffer from an arbitrary file deletion vulnerability. Many versions are affected. ECOA Building Automation System Arbitrary File Deletion Vendor: ECOA Technologies Corp. Product web page: http://www.ecoa.com.tw Affected version: ECOA ECS Router Controller - ECS...

ECOA Building Automation System Cross-Site Request Forgery

Summary 1 The Risk-Terminator Web Graphic control BEMS Building Energy Management System are designed to provide you with the latest in the Human Machine Interface HMI technology, for completely monitoring and controlling management. It may be used singly for small and medium sized facilities,...

iKeyMonitor: A parental control app ensuring safety of your child

By Carolina Parents are raising a completely new breed of kids. Nowadays, toddlers use mobile devices and teens use text messages to communicate. Many schools have also integrated computers and tablets in their curriculum. To ensure children use the Internet safely, parents need a parental contro...

Circle with Disney configure.xml Notifications Command Injection Vulnerability(CVE-2017-2917)

Summary An exploitable vulnerability exists in the notifications functionality of Circle with Disney running firmware 2.0.1. Specially crafted network packets can cause an OS command injection. An attacker can send an HTTP request trigger this vulnerability. Tested Versions Circle with Disney 2.0...

Circle with Disney WiFi Security Downgrade Vulnerability(CVE-2017-12096)

Summary An exploitable vulnerability exists in the WiFi management of Circle with Disney. A crafted Access Point with the same name as the legitimate one, can be used to make Circle connect to an untrusted network. An attacker needs to setup an Access Point reachable by the device and to send a...

Circle with Disney check_circleservers Code Execution Vulnerability(CVE-2017-2882)

Summary An exploitable vulnerability exists in the servers update functionality of Circle with Disney running firmware 2.0.1. Specially crafted network packets can cause the device to overwrite sensitive files, resulting in code execution. An attacker needs to impersonate a remote server in order...

Wikileaks Unveils 'Cherry Blossom' — Wireless Hacking System Used by CIA

WikiLeaks has published a new batch of the ongoing Vault 7 leak, this time detailing a framework – which is being used by the CIA for monitoring the Internet activity of the targeted systems by exploiting vulnerabilities in Wi-Fi devices. Dubbed "Cherry Blossom," the framework was allegedly...

China Orders Apple to Monitor App Store Users and Track their Identities

China has long been known for its strict censorship which makes it difficult for foreign technology companies to do business in the world’s most populous country of over 1.35 billion people. Now, the new law issued by the Chinese government will expand its strict Internet monitoring efforts into...

E-Detective Lawful Interception System - Multiple Vulnerabilities

Exploit for php platform in category web applications Advisory: E-Detective Lawful Interception System multiple security vulnerabilities Date: 14/06/2015 CVE: unassigned Authors: Mustafa Al-Bassam https://musalbas.com slipstream/RoL https://twitter.com/TheWack0lian Software: Decision Group...

Chinese Telecom Routes Russian Domestic Internet Traffic through China

Russian Internet traffic, including the domestic one, has continuously been re-routed outside the country due to routing errors by China Telecom, which could result in compromising the security of Russian communications. Internet monitoring service Dyn reported Thursday in a blog post that the...

Google Public DNS Server Traffic Hijacked

The Internet is becoming a dangerous place day-by-day and especially for those innocent web users who rely on 3rd party services. The latest bad news is that the World's largest and most widely used Google's free public DNS Domain name system resolvers raised security red flags yesterday. DNS is...

Syrian Internet Connection Cut Off Again

For the second time this month, the civil war-torn nation of Syria lost its connection to the Internet this morning before emerging from the Internet blackout several hours later, according to information provided by Arbor Networks. Google’s Transparency report webpage revealed that at around 2:5...

UK Intelligence recruiting brilliant minds for eavesdropping social networks

Government eavesdropping and security agency GCHQ is developing new tools to sift through them for nuggets of useful data from Facebook, Twitter, LinkedIn, Google+, Pinterest. All of these are the source of valuable intelligence that the UK's intelligence agencies want to know about. During a vis...

US Trolls Al-Qaida with Anti-Terror Ads on Yemeni Tribal Sites

The US State Department has launched a digital campaign against Al Qaida in which they are replacing the terror organization’s anti-American propaganda ads on Yemeni tribal sites with anti-terror propaganda of their own, according to an Associated Press report. The report indicates that the State...

WebTitan Appliance v3.50.x - Multiple Web Vulnerabilities

Document Title: =============== WebTitan Appliance v3.50.x - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=89 Release Date: ============= 2012-01-12 Vulnerability Laboratory ID VL-ID: ==================================== 89...

As SOPA Looms, Survey Suggests Most Americans Are Media Pirates – And Proud Of It

While lawmakers in the U.S. debate new laws that would give media companies powerful new legal weapons to stop the distribution of copyrighted content online, a new survey of Americans finds that most admit to having pirated content themselves – and don’t see any problem with it. The survey of...

The Spy Files: Wikileaks expose Mobile Phone, Email Hacking capability

The Spy Files: Wikileaks expose Mobile Phone, Email Hacking capability Wikileaks has released dozens of new documents highlighting the state of the once covert, but now lucrative private sector global surveillance industry. According to Assange, over 150 private sector organisations in 25 countri...

ICIMP 2012 Call For Papers

INVITATION: ================= Please, consider to contribute to and/or forward to the appropriate groups the following opportunity to submit and publish original scientific results to ICIMP 2012. The submission deadline is set to January 5, 2012. In addition, authors of selected papers will be...