12 matches found
Securing Mobile Devices During Holiday Travel
As the holiday season begins, many people will travel with their mobile devices. Although these devices—such as smart phones, tablets, and laptops—offer a range of conveniences, users should be mindful of potential threats and vulnerabilities while traveling with them. The Cybersecurity and...
Securing Mobile Devices During Summer Travel
As summer begins, many people will travel with their mobile devices. Although these devices—such as smart phones, tablets, and laptops—offer a range of conveniences, users should be mindful of potential threats and vulnerabilities while traveling with them. NCCIC encourages users to review the...
Pyeongchang 2018: Staying Cyber Safe during the Olympics
As the 2018 Olympic Games in Pyeongchang approach, NCCIC/US-CERT reminds travelers to be aware of cybersecurity risks. At high-profile events, cyber activists may take advantage of the large audience to spread their message. Cyber criminals may attempt to steal personally identifiable information...
List of Portable Hardware Devices for Penetration Testing
PenTestIT RSS Feed All of us at some point or the other think of a possibility of "remoting" a penetration test. Five years ago, you would have to engineer something like this for to suit your own requirements. However now, there are commercial tools already available that help you do that and mu...
Personal Device Security During the Holiday Season
As the winter holiday travel season begins, US-CERT and Stop.Think.Connect remind users to be mindful of the security risks associated with portable devices such as smart phones, tablets, and laptops. These devices offer a range of conveniences such as allowing us to order gifts on-the-go,...
SEC Consult SA-20140521-0 :: Multiple critical vulnerabilities in CoSoSys Endpoint Protector 4
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SEC Consult Vulnerability Lab Security Advisory 20140521-0 ======================================================================= title: Multiple vulnerabilities product: CoSoSys Endpoint Protector 4 vulnerable version: all - except issue 1 fixed...
Android ZIP文件提取classes.dex文件签名校验绕过漏洞
Google Android是一种以Linux为基础的开放源代码操作系统,主要使用于便携设备 Google Android在签名验证过程中,对Zip文件相应16位域的读取时,没有考虑到大于2^15的情况。通过构建特殊的classes.dex,可绕过签名校验,安装恶意程序 0 Google Android 4.2 厂商解决方案 目前没有详细解决方案提供: http://www.android.com/...
Non-profit Hospice Hit with Large Fine for Small Data Breach
An Idaho non-profit hospice has been fined $50,000 for losing a laptop containing unencrypted data on 441 patients. The laptop was stolen in February 2011 from a hospice worker’s car and never retrieved, according to news accounts. But Hospice of North Idaho officials say there is no evidence the...
Endpoint Protector 4.0.4.0 - Multiple Vulnerabilities
Endpoint Protector 4.0.4.0 - Multiple Vulnerabilities Title: ====== Endpoint Protector v4.0.4.0 - Multiple Web Vulnerabilities Date: ===== 2012-10-01 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=571 VL-ID: ===== 571 Common Vulnerability Scoring System:...
Endpoint Protector v4.0.4.0 - Multiple Web Vulnerabilities
Document Title: =============== Endpoint Protector v4.0.4.0 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=571 Release Date: ============= 2012-09-30 Vulnerability Laboratory ID VL-ID: ====================================...
Mobile Banking Malware: Protect Your Finances
The prolific rise in smartphones, tablets and other portable devices has greatly expanded the ways in which we interact with personal and professional services. The public can now singlehandedly use their mobile device to pay for things with the ease of flashing their cell phone. Unfortunately,...
Personal Device Security During the Holiday Season
As the winter holiday travel season begins, US-CERT would like to remind users to be mindful of the security risks associated with portable devices such as smart phones, tablets, and laptops. US-CERT would like to encourage users to review the following US-CERT Cyber Security Tips. Following the...