Hyper-V crash consistent Backups/Replicas due to McAfee mfehidk driver

Challenge If McAfee FS minifilter MFEHIDK driver is loaded into Windows kernel, then it doesn't allow any other driver to load at lower altitudes, it only allows other drivers to load at higher altitudes, supposedly because of proactive defense logic of McAfee Antivirus. Therefore Veeam CBT drive...

IT Security – Do it the hard or easy way!

Whether you are a one-stop-shop IT guy or a network admin on a large IT team you owe it to yourself to learn about Security Information and Event Management SIEM technology. Why? SIEM lets you correlate between events recorded in different logs for related systems. This is significant because...

Microsoft XML Core Services vulnerability is still computer users face the biggest risk-vulnerability warning-the black bar safety net

Recently reported, Microsoft XML Core Services vulnerability is still computer users face the biggest risk, and more than 4 3% of users are running a vulnerable version. Can you explain why these problems still exist as well as to alleviate the problem the best way? Michael Cobb: the Secunia in t...

Openwall 3.1 Released With Fixes for Shellshock, POODLE Attack

The maintainers of the Openwall security enhanced Linux distribution have released a new stable version, which includes fixes for a number of serious vulnerabilities, such as the Shellshock Bash bug and the flaw in SSLv3 that leads to the POODLE attack. Openwall is designed to be a small, compact...

Netflix Open Source Security Tools Solve Range of Challenges

Few organizations experience the scale of Web-based application security challenges that Netflix engineers deal with on a regular basis. Sometimes the response to a threat requires a homespun tool that, more often than not, ends up being released to open source. “Our assumption is that we...

PT-2014-10: Proactive Filter Bypassing in Bitrix CMS

The specialists of the Positive Research center have detected a Proactive Filter Bypassing vulnerability in Bitrix CMS. Bitrix Proactive Filter, which provides traffic filtering and protection from attacks on web application, ignores the entire functionality of MySQL queries syntax due to imprope...

Micropoint Proactive Denfense Mp110013.sys <= 1.3.10123.0 - Local Privilege Escalation Exploit

No description provided by source. / Micropoint Proactive Denfense Mp110013.sys = 1.3.10123.0 Local Privilege Escalation Exploit VULNERABLE PRODUCTS Micropoint Proactive Denfense = 100323.1.2.10581.0285.r1 mp110013.sys = 1.3.10123.0 DETAILS: mp110013.sys handles DeviceIoControl request which tell...

Xcode OpenBase <= 9.1.5 - Local Root Exploit (OSX)

No description provided by source. !/usr/bin/perl http://www.digitalmunition.com written by kf kflistsatdigitalmunitiondotcom http://docs.info.apple.com/article.html?artnum=61798 This won't help ftp://www.openbase.com/pub/OpenBase10.0 This will This is an exploit for a 3rd party program that has...

AOL Breached, Investigating Spam from Spoofed Accounts

AOL reported today that it has been breached and urges users of its web-based email and other online services to change their passwords. AOL’s investigation of a breach of its internal network and systems is under way with the help of federal authorities and a forensics firm, the company said. La...

The Top Six Ways You Will Benefit From Event Log Monitoring

Systems on your network log data 24/7/365. Simply allowing logs to take up disk space, reviewing them only after something has happened and deleting logs when you run low on disk space are all the strategies of an admin doomed to always being in firefighting mode, reacting to bad things when they...

The Top Six Ways You Will Benefit From Event Log Monitoring

Systems on your network log data 24/7/365. Simply allowing logs to take up disk space, reviewing them only after something has happened and deleting logs when you run low on disk space are all the strategies of an admin doomed to always being in firefighting mode, reacting to bad things when they...

ProActive CMS XSS / CSRF / Open Redirect

Exploit Title: ProActive CMS Multiple Vulnerabilities Google Dork: intext:"Powered by Proactive CMS" Exploit Author: Rafay Baloch Vendor Homepage: http://www.proactivecms.com Tested on: Linux Stored Cross Site Scripting: http://professional.inbusiness.com.au/admin.php?action=newuser Insert Your...

ProActive CMS Multiple Vulnerabilities

Exploit for php platform in category web applications Exploit Title: ProActive CMS Multiple Vulnerabilities Google Dork: intext:"Powered by Proactive CMS" Date: 12.1.2013 Exploit Author: Mormoroth Vendor Homepage: http://www.proactivecms.com Tested on: Linux ---------Cross Site Scripting---------...

Yahoo data leak by Virus_Hima, Why do we need a proactive security?

In November I was contacted for first time by the Egyptian Hacker named ViruSHimA who announced me to have hacked into Adobe servers and leaked private data. The hacker violated Adobe servers gaining full access and dumping the entire database with more of 150,000 emails and hashed passwords of...

Yahoo data leak by Virus_Hima, Why do we need a proactive security?

In November I was contacted for first time by the Egyptian Hacker named ViruSHimA who announced me to have hacked into Adobe servers and leaked private data. The hacker violated Adobe servers gaining full access and dumping the entire database with more of 150,000 emails and hashed passwords of...

MODX Website Compromise

On Wednesday August 29, a hacker exploited a Local File Inclusion LFI vector in an older release of MODX Revolution we had running on one of our servers. This issue had already been fixed as part of the MODX Revolution 2.2.4 release. We locked down the site while we investigated the compromise...

Malware Using White Lists, Forgery, Kernel Attacks To Stay Alive

BARCELONA — Rootkit programs are increasingly mimicking anti virus programs: adopting self protection features and even application whitelists to maintain control over the systems they control, according to a presentation at the annual Virus Bulletin Conference. Rachit Mathur, a research scientis...

LastPass Forces Users to Change Master Passwords Following Suspicious Activity

LastPass, one of the most popular cloud-based password management services, is forcing users to change their master passwords as a precaution after it discovered an unauthorized data transfer out of its network. In a post on its blog the company explains, in sufficient detail, what prompted this...

IT Compliance Matures into Risk Management

Over the past ten years rapid change and an evolving threat landscape has better prepared Coalfire to defend our clients against known risks. Not surprisingly, much of the progress is due to compliance-related investments. As we look towards the next ten years, we see a proactive risk management...

New Conference Wants to Bring Malware Writers Out of the Shadows

ED: Malcon Conference hopes to bring malware writers out of the shadows DEK: Malcon, a new, Mumbai-based conference, says that the security community can benefit from what malware authors have to teach. The computer security community is used to vilifying the hackers and malware authors who choos...