ON PREM vs. CLOUD.

Security and Other considerations. Part 2 By Johan Nordstrom To be able to keep up with the development of new security threats, companies need to rethink their security strategies. The basics must be to decrease complexity and use automated solutions when possible. There has been a change in the...

Heartland, TJX Attacks Look Sadly Familiar

The news that federal authorities have indicted the man they claim is responsible for the TJX attack for also allegedly hacking into the networks of Heartland Payment Systems, 7-Eleven and the Hannaford Brothers grocery chain shows that law enforcement is indeed stepping up its work on cybercrime...

BEA WebLogic 7.0 - Hostname/NetBIOS Name Remote Information Disclosure

source: https://www.securityfocus.com/bid/7257/info It has been reported that some types of requests may result in sensitive information disclosure. From this, an attacker may be able to launch a more organized attack against vulnerable hosts. GET . HTTP/1.0\r\n\r\n And also: ./ .// .////////////...

Apple QuickTime/Darwin Streaming Server 4.1.x - 'parse_xml.cgi' File Disclosure

source: https://www.securityfocus.com/bid/6990/info A file retrieval vulnerability has been reported for QuickTime/Darwin Streaming Server. The vulnerability exists due to insufficient sanitization of some parameters given to the parsexml.cgi script. Information obtained in this manner may be use...