152 matches found
Chinese Hackers exploiting Internet Explorer Zero Day vulnerability for Cyber Espionage
Web site for the Council on Foreign Relations was compromised and recently hit by a drive-by attack that was detected earlier this week. Hacker are suspected to be from China , who are exploiting a zero day Internet Explorer vulnerability for Cyber Espionage attack against one of American most...
MS12-033: Vulnerability in Windows Partition Manager Could Allow Elevation of Privilege (2690533)
The remote Windows host has an elevation of privilege vulnerability due to a flaw in the way the Windows Partition Manager handles device relations requests. Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code with administrator privileges. C Tenable...
Leaders from China, U.S. Meet, Agree to Rally Against Cyber Threats
In an attempt to clear the cybersecurity air, the United States and the People’s Republic of China agreed Monday to work in tandem to prevent future cyber threats. Meeting at the Pentagon, Defense Secretary Leon Panetta and General Liang Guanglie, China’s Minister of National Defense, insisted th...
Page's CEO Letter Gives Short Shrift To Privacy, Security
Privacy and security are not the top concerns for Google’s Larry Page, at least if the CEO’s most recent message to investors is any indication. The 3,500 word letter makes scant mention of either security or user privacy and gives the public little indication of Google’s plans to address the...
HDFC Bank Database Hacked by zSecure team using SQL injection vulnerability
HDFC Bank Database Hacked by zSecure team using SQL injection vulnerability zSecure team is back in news again, this time they have discovered a critical SQL injection vulnerability in HDFC Bank's Web Portal. Using this critical flaw HDFC Bank's various databases can be accessed and dumped as wel...
While U.S. Plots Cyber Strategy, Experts See Obstacles Ahead
The release of the International Strategy for Cyberspace late last month marked a major shift in the way that United States officials think about and treat information security, which now seems as if it will have a place at the table during diplomatic discussions. However, experts and U.S...
After the Walkman
For a company that almost single-handedly created the consumer electronics industry with blockbusters like the Walkman, Sony has had its share of strategic and public relations face plants in the last decade, with IT security being just one flash point. From its infamous digital rights management...
Ruling in Assange Extradition Case Expected Feb. 24,2011 !
Final arguments in the extradition hearing of WikiLeaks founder Julian Assange were presented in a London court on Friday. The judge is expected to rule on February 24, but the case is likely to continue long afterward if either side files an appeal. Assange is being sought for questioning in...
Image Of the Day: The Internet Hijack That Wasn't?
Reports surfaced last week about an incident dating back to April, 2010 that involved the suspicious rerouting of Internet traffic through infrastructure belonging to a telecommunications carrier in China. Originally reported within technical circles in April, the incident simmered within the sma...
Private sector relations should be job one for cyber security czar
Whoever is brave enough to fill the soon-to-be-created cybersecurity czar position will find a rather large pile of challenges waiting. Among them will be dealing with a confused and argumentative Congress, doing a full-scale assessment of the country’s critical infrastructure and reaching out to...
Mandriva Update for freeradius MDVA-2008:054 (freeradius)
Check for the Version of freeradius OpenVAS Vulnerability Test Mandriva Update for freeradius MDVA-2008:054 freeradius Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...
[Full-disclosure] Password disclosure and remote access in Netcool/NeuSecure Security information management platform
Multiple security information disclosure paths and remote access Netcool/NeuSecure Security information management platform . Cleartext-storage of passwords in the configuration file Cleartext reporting of user password in the log Default backend Mysql database user and remote access. Laxed...