US-CERT publishes indicators from Russian APT attacks, more here:...
-- John Bambenek bambenek \at\ gmail /dot/ com Fidelis Cybersecurity (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleVuln: GStreamer Good Plug-ins CVE-2016-9807 Denial of Service Vulnerability
GStreamer Good Plug-ins CVE-2016-9807 Denial of Service Vulnerability
View ArticleVuln: Lenovo Transition CVE-2016-8227 Local Privilege Escalation Vulnerability
Lenovo Transition CVE-2016-8227 Local Privilege Escalation Vulnerability
View ArticleVuln: IBM WebSphere Application Server CVE-2016-5983 Remote Code Execution...
IBM WebSphere Application Server CVE-2016-5983 Remote Code Execution Vulnerability
View ArticleVuln: GStreamer Bad Plug-ins CVE-2016-9445 Integer Overflow Vulnerability
GStreamer Bad Plug-ins CVE-2016-9445 Integer Overflow Vulnerability
View ArticleVuln: GStreamer Bad Plug-ins CVE-2016-9812 Denial of Service Vulnerability
GStreamer Bad Plug-ins CVE-2016-9812 Denial of Service Vulnerability
View ArticleVuln: Linux Kernel CVE-2013-6282 Local Privilege Escalation Vulnerabilities
Linux Kernel CVE-2013-6282 Local Privilege Escalation Vulnerabilities
View ArticleMore on Protocol 47 denys, (Thu, Dec 29th)
Following up on yesterdays diary on an increase in Protocol 47 traffic. Thanks to everyone who sent the ISC PCAPs and more information. Current speculation is the Protocol 47 uptick is backscatter...
View ArticleVuln: Piwigo CVE-2016-10084 Remote File Inclusion Vulnerability
Piwigo CVE-2016-10084 Remote File Inclusion Vulnerability
View ArticleVuln: Piwigo 'admin/plugin.php' Cross Site Scripting Vulnerability
Piwigo 'admin/plugin.php' Cross Site Scripting Vulnerability
View ArticleVuln: Piwigo CVE-2016-10085 Remote File Include Vulnerability
Piwigo CVE-2016-10085 Remote File Include Vulnerability
View ArticleClik here to view.
White House fails to make case that Russian hackers tampered with election
Enlarge Talk about disappointments. The US government's much-anticipated analysis of Russian-sponsored hacking operations provides almost none of the promised evidence linking them to breaches that...
View ArticleOngoing Scans Below the Radar, (Sat, Dec 31st)
With the rise of botnets like Mirai[1], we have seen ahuge increase of port scans to find new open ports like %%port:2323%% or later %%port:6789%%. If the classic %%port:80%% and %%port:23%% remain"...
View ArticleVuln: IBM QRadar SIEM CVE-2016-2878 Multiple Cross Site Request Forgery...
IBM QRadar SIEM CVE-2016-2878 Multiple Cross Site Request Forgery Vulnerabilities
View ArticleBugtraq: [slackware-security] seamonkey (SSA:2016-365-03)
[slackware-security] seamonkey (SSA:2016-365-03)
View ArticleBugtraq: Fwd: [ANNOUNCE] CVE-2016-6793 Apache Wicket deserialization...
Fwd: [ANNOUNCE] CVE-2016-6793 Apache Wicket deserialization vulnerability
View ArticleBugtraq: [SECURITY] [DSA 3750-1] libphp-phpmailer security update
[SECURITY] [DSA 3750-1] libphp-phpmailer security update
View ArticleBugtraq: 0-day: QNAP NAS Devices suffer of heap overflow
0-day: QNAP NAS Devices suffer of heap overflow
View ArticleVuln: Zend Framework 'zend-mail' Component Remote Code Execution Vulnerability
Zend Framework 'zend-mail' Component Remote Code Execution Vulnerability
View ArticleVuln: Python Pillow CVE-2016-4009 Integer Overflow Vulnerability
Python Pillow CVE-2016-4009 Integer Overflow Vulnerability
View Article