Clik here to view.
Confirmed: hacking tool leak came from “omnipotent” NSA-tied group
The leak over the weekend of advanced hacking tools contains digital signatures that are almost identical to those in software used by the state-sponsored Equation Group, according to a just-published...
View Article522 Error Code for the Win, (Wed, Aug 17th)
Recently I ran across a tweet from Packet Watcher @jinq102030 (https://twitter.com/jinq102030/status/756476442590842880) to keep an eye on HTTP error code 522 for possible malware check-ins. 522 code...
View ArticleVuln: Apache Tomcat CVE-2015-5345 Directory Traversal Vulnerability
Apache Tomcat CVE-2015-5345 Directory Traversal Vulnerability
View ArticleVuln: Apache Tomcat CVE-2015-5346 Session Fixation Vulnerability
Apache Tomcat CVE-2015-5346 Session Fixation Vulnerability
View ArticleBugtraq: [SYSS-2016-067] NetIQ Access Manager (iManager) - Temporary Second...
[SYSS-2016-067] NetIQ Access Manager (iManager) - Temporary Second Order Cross-Site Scripting (CWE-79)
View ArticleVuln: Linux Kernel 'Ack Challenge' Information Disclosure Vulnerability
Linux Kernel 'Ack Challenge' Information Disclosure Vulnerability
View ArticleBugtraq: Cisco Security Advisory: Cisco Firepower Management Center Privilege...
Cisco Security Advisory: Cisco Firepower Management Center Privilege Escalation Vulnerability
View ArticleBugtraq: Cisco Security Advisory:Cisco Application Policy Infrastructure...
Cisco Security Advisory:Cisco Application Policy Infrastructure Controller Enterprise Module Remote Code Execution Vulnerability
View ArticleBugtraq: Cisco Security Advisory: Cisco Firepower Management Center Remote...
Cisco Security Advisory: Cisco Firepower Management Center Remote Command Execution Vulnerability
View ArticleISC Stormcast For Thursday, August 18th 2016...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleClik here to view.
Cisco confirms NSA-linked zeroday targeted its firewalls for years
(credit: NIST) Cisco Systems has confirmed that recently-leaked malware tied to the National Security Agency exploited a high-severity vulnerability that had gone undetected for years in every...
View Article1 compromised site - 2 campaigns, (Thu, Aug 18th)
Introduction Earlier today, I ran across a compromised website with injected script from both the pseudo-Darkleech campaign and the EITest campaign. This is similar to another compromised site I...
View ArticleVuln: Cisco Smart Call Home Transport Gateway CVE-2016-6359 Cross Site...
Cisco Smart Call Home Transport Gateway CVE-2016-6359 Cross Site Scripting Vulnerability
View ArticleBugtraq: Cisco Security Advisory: Cisco Adaptive Security Appliance SNMP...
Cisco Security Advisory: Cisco Adaptive Security Appliance SNMP Remote Code Execution Vulnerability
View ArticleBugtraq: [SECURITY] [DSA 3649-1] gnupg security update
[SECURITY] [DSA 3649-1] gnupg security update
View ArticleBugtraq: [SECURITY] [DSA 3650-1] libgcrypt20 security update
[SECURITY] [DSA 3650-1] libgcrypt20 security update
View ArticleBugtraq: Telus Actiontec T2200H Modem Input Validation Flaw Allows Elevated...
Telus Actiontec T2200H Modem Input Validation Flaw Allows Elevated Shell Access
View ArticleVuln: Multiple Cisco Products CVE-2016-6367 Local Code Execution Vulnerability
Multiple Cisco Products CVE-2016-6367 Local Code Execution Vulnerability
View ArticleBugtraq: [SYSS-2016-052] QNAP QTS - OS Command Injection
[SYSS-2016-052] QNAP QTS - OS Command Injection
View ArticleBugtraq: [SYSS-2016-050] QNAP QTS - Persistent Cross-Site Scripting
[SYSS-2016-050] QNAP QTS - Persistent Cross-Site Scripting
View Article