Quantcast
Channel: Information Security News
Browsing all 9687 articles
Browse latest View live

OWASP Project Releases

:0
:0
April 6, 2017, 4:00 pm

View Article
Search

ISC Stormcast For Friday, April 7th 2017...

:0
:0
April 6, 2017, 8:00 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

Tracking Website Defacers with HTTP Referers, (Fri, Apr 7th)

:0
:0
April 7, 2017, 12:00 am

In a previous diary, I explained how pictures may affect your website reputation[1]. Although asuggestedrecommendation was to prevent cross-linking by using the HTTP referer, this is a control that I...

View Article

Vuln: Ruby 'initialize()' Function Heap Buffer Overflow Vulnerability

:0
:0
April 7, 2017, 2:00 am

Ruby 'initialize()' Function Heap Buffer Overflow Vulnerability

View Article

Vuln: Ruby 'dl/handle.c' Security Bypass Vulnerability

:0
:0
April 7, 2017, 2:00 am

Ruby 'dl/handle.c' Security Bypass Vulnerability

View Article

Vuln: HelpDEZK CVE-2017-7447 Cross Site Request Forgery Vulnerability

:0
:0
April 7, 2017, 4:00 am

HelpDEZK CVE-2017-7447 Cross Site Request Forgery Vulnerability

View Article

Vuln: LightDM CVE-2017-7358 Local Directory Traversal Vulnerability

:0
:0
April 7, 2017, 4:00 am

LightDM CVE-2017-7358 Local Directory Traversal Vulnerability

View Article

Vuln: Trend Micro InterScan Web Security Virtual Appliance CVE-2017-6340 HTML...

:0
:0
April 7, 2017, 5:00 am

Trend Micro InterScan Web Security Virtual Appliance CVE-2017-6340 HTML Injection Vulnerability

View Article
Search

Bugtraq: SEC Consult SA-20170407-0 :: Server-Side Request Forgery in MyBB forum

:0
:0
April 7, 2017, 6:00 am

SEC Consult SA-20170407-0 :: Server-Side Request Forgery in MyBB forum

View Article

Vuln: Nextcloud Server CVE-2017-0888 Content Spoofing Vulnerability

:0
:0
April 7, 2017, 8:00 am

Nextcloud Server CVE-2017-0888 Content Spoofing Vulnerability

View Article

Vuln: Tryton Trytond CVE-2017-0360 Incomplete Fix Information Disclosure...

:0
:0
April 7, 2017, 8:00 am

Tryton Trytond CVE-2017-0360 Incomplete Fix Information Disclosure Vulnerability

View Article
Image may be NSFW.
Clik here to view.

Do you want to play a game? Ransomware asks for high score instead of money

:0
:0
April 7, 2017, 9:00 am

Rensenware's warning screen asks for a high score, rather than the usual pay off, to decrypt your files. At this point, Ars readers have heard countless tales of computer users being forced to pay...

View Article

Vuln: ImageWorsener 'iwgif_record_pixel()' Function Denial of Service...

:0
:0
April 7, 2017, 12:00 pm

ImageWorsener 'iwgif_record_pixel()' Function Denial of Service Vulnerability

View Article

Vuln: WebsiteBaker CVE-2017-7410 Multiple SQL Injection Vulnerabilities

:0
:0
April 7, 2017, 12:00 pm

WebsiteBaker CVE-2017-7410 Multiple SQL Injection Vulnerabilities

View Article

Vuln: ImageWorsener 'iwbmp_read_info_header()' Function Denial of Service...

:0
:0
April 7, 2017, 12:00 pm

ImageWorsener 'iwbmp_read_info_header()' Function Denial of Service Vulnerability

View Article
Search

Vuln: Faveo CVE-2017-7571 Cross Site Request Forgery Vulnerability

:0
:0
April 7, 2017, 12:00 pm

Faveo CVE-2017-7571 Cross Site Request Forgery Vulnerability

View Article
Image may be NSFW.
Clik here to view.

WikiLeaks just dropped the CIA’s secret how-to for infecting Windows

:0
:0
April 7, 2017, 1:00 pm

Enlarge / The logo of the CIA's Engineering Development Group (EDG), the home of the spy agency's malware and espionage tool developers. (credit: Central Intelligence Agency) WikiLeaks has published...

View Article

Vuln: Firejail CVE-2017-5207 Local Privilege Escalation Vulnerability

:0
:0
April 8, 2017, 8:00 am

Firejail CVE-2017-5207 Local Privilege Escalation Vulnerability

View Article
Image may be NSFW.
Clik here to view.

Booby-trapped Word documents in the wild exploit critical Microsoft 0day

:0
:0
April 8, 2017, 2:00 pm

(credit: Rob Enslin) There's a new zeroday attack in the wild that's surreptitiously installing malware on fully-patched computers. It does so by exploiting a vulnerability in most or all versions of...

View Article
Image may be NSFW.
Clik here to view.

Domain Whitelisting With Alexa and Umbrella Lists, (Sat, Apr 8th)

:0
:0
April 8, 2017, 3:00 pm

I read an interesting blogpost: Domain Whitelist Benchmark: Alexa vs Umbrella The author reported that around 1400 domains on Malwarebytes hpHosts EMD blacklist were in the top 1,000,000 domains Alexa...

View Article
Browsing all 9687 articles
Browse latest View live
Search