Clik here to view.
Smart TV hack embeds attack code into broadcast signal—no access required
Enlarge / A screen shot showing the exploit taking control of a Samsung TV. A new attack that uses terrestrial radio signals to hack a wide range of Smart TVs raises an unsettling prospect—the ability...
View ArticleClik here to view.
Wikileaks releases code that could unmask CIA hacking operations
Enlarge / A screenshot of foreign language samples used by a CIA tool to hide the nation of origin of CIA code implants, leaked on Friday by WikiLeaks. Up until this week, WikiLeaks' "Vault 7"...
View ArticleBugtraq: Splunk Enterprise Information Theft CVE-2017-5607
Splunk Enterprise Information Theft CVE-2017-5607
View ArticleISC Stormcast For Monday, April 3rd 2017...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleIPFire - A Household Multipurpose Security Gateway, (Sun, Apr 2nd)
I have been looking for a while for inline proxy that is easy to setup and manage and a co-worker suggested trying IPFire[1]. IPFire is a Linux based hardened OS compiled from sources and takes about...
View ArticleVuln: LastPass Isolated World Global Properties Remote Code Execution...
LastPass Isolated World Global Properties Remote Code Execution Vulnerability
View ArticleVuln: Ceragon FibeAir IP-10 Web Interface Authentication Bypass Vulnerability
Ceragon FibeAir IP-10 Web Interface Authentication Bypass Vulnerability
View ArticleVuln: Multiple GIGABYTE Products VU#507496 Multiple Security Bypass...
Multiple GIGABYTE Products VU#507496 Multiple Security Bypass Vulnerabilities
View ArticleVuln: Rancher Server CVE-2017-7297 Security Bypass Vulnerability
Rancher Server CVE-2017-7297 Security Bypass Vulnerability
View ArticleVuln: PHP CVE-2017-7272 Server Side Request Forgery Security Bypass...
PHP CVE-2017-7272 Server Side Request Forgery Security Bypass Vulnerability
View ArticleBugtraq: SEC Consult SA-20170403-0 :: Misbehavior of PHP fsockopen function
SEC Consult SA-20170403-0 :: Misbehavior of PHP fsockopen function
View ArticleVuln: Linux Kernel CVE-2017-7374 Local Denial of Service Vulnerability
Linux Kernel CVE-2017-7374 Local Denial of Service Vulnerability
View ArticleVuln: Apple iOS/macOS/WatchOS/tvOS CVE-2017-2490 Memory Corruption Vulnerability
Apple iOS/macOS/WatchOS/tvOS CVE-2017-2490 Memory Corruption Vulnerability
View ArticleVuln: podofo Null Pointer Dereference Denial of Service and Heap Based Buffer...
podofo Null Pointer Dereference Denial of Service and Heap Based Buffer Overflow Vulnerabilities
View ArticleVuln: SocialNetwork CVE-2017-7390 Cross Site Scripting Vulnerability
SocialNetwork CVE-2017-7390 Cross Site Scripting Vulnerability
View ArticleVuln: Openeclass 'webconf/webconf.php' Multiple Cross Site Scripting...
Openeclass 'webconf/webconf.php' Multiple Cross Site Scripting Vulnerabilities
View ArticleVuln: Magmi 'magmi/web/ajax_gettime.php' Cross Site Scripting Vulnerability
Magmi 'magmi/web/ajax_gettime.php' Cross Site Scripting Vulnerability
View ArticleClik here to view.
iOS 10.3.1 includes bug fixes and improves the security of your iPhone or iPad
Enlarge iOS 10.3.1 is out. The release notes don't specify what it fixes that wasn't addressed in the wide-ranging iOS 10.3 update released just a week ago, but we do know that this new update...
View ArticleClik here to view.
A Practical Use for a SHA1 Collision, (Mon, Apr 3rd)
[This is a guest diary by Paul Bolton] First I it is not a new attack against sha1. When Google announced a sha1 collision in February (here) it reminded me of a detour I took in Nov 2015 when...
View ArticleVuln: radare2 CVE-2017-6448 Stack Buffer Overflow Vulnerability
radare2 CVE-2017-6448 Stack Buffer Overflow Vulnerability
View Article