Browsing Author: Dennis Fisher

drupal_vulnerable

Assume ‘Every Drupal 7 Site Was Compromised’ Unless Patched By Oct. 15

The maintainers of the Drupal content management system are warning users that any site owners who haven’t patched a critical vulnerability in Drupal Core disclosed earlier this month should consider their sites to be compromised.

Read more...

trojan horse snow

Dyreza Banker Trojan Attackers Exploiting CVE-2014-4114 Windows Flaw

The Dyreza Trojan is exploiting the recently disclosed CVE-2014-4114 vulnerability in Windows that was first used by the Sandworm attackers.

Read more...

IMG_1643

Cyberespionage: ‘This Isn’t a Problem That Can Be Solved’

The issue of cyberespionage is a thorny one, both technically and politically speaking, but some experts say there may not actually be a solution to the problem.

Read more...

IMG_1625

Government, Industry Focusing on Issue of Resiliency

The lack of a central authority for government network security is not a new problem but it’s not necessarily a bad thing, if everyone is doing their jobs, some experts say.

Read more...

Tom Davis

Infighting, Politics Hampering Cybersecurity Progress in Washington

The United States government and private sector are unprepared for a major cyber attack on the country’s critical infrastructure, a former Congressman said.

Read more...

tor_clickfraud

Researcher Finds Tor Exit Node Adding Malware to Binaries

A security researcher has identified a Tor exit node that was actively patching binaries users download, adding malware to the files dynamically. The discovery, experts say, highlights the danger of trusting files downloaded from unknown sources and the potential for attackers to abuse the trust users have in Tor and similar services. Josh Pitts of Leviathan[...]

Read more...

cisco building

Cisco Patches Three-Year-Old Telnet Remote Code Execution Bug in Security Appliances

There is a severe remote code execution vulnerability in a number of Cisco’s security appliances, a bug that was first disclosed nearly three years ago.

Read more...