Browsing Category: Vulnerabilities

[img_assist|nid=2530|title=|desc=|link=none|align=right|width=100|height=100]The FBI is investigating the theft of nearly a half million dollars
from tiny Duanesburg Central School District in upstate New York, after
cyber thieves tried to loot roughly $3.8 million from district online
bank accounts last month. Read the full article. [KrebsonSecurity]

Read more...

Categories: Malware, Vulnerabilities

[img_assist|nid=2519|title=|desc=|link=none|align=right|width=100|height=100]A German security researcher has released an open-source tool that analyses and cleans up Flash code before playback to
prevent security holes in Adobe Flash Player from being exploited.The tool, called “Blitzableiter” (lightning rod), is the brainchild of Felix “FX” Lindner, a well-known hacker who presented it at the 26th Chaos Communication Congress (26C3).

Read more...

Categories: Malware, Vulnerabilities

[img_assist|nid=2507|title=|desc=|link=none|align=right|width=100|height=100]Nearly six months after Apple added a malware blocker to Mac OS X (Snow Leopard), the feature appears to be collecting cobwebs.Apple has not added any anti-malware signature updates to the XProtect.plist file that launched with antidotes for OSX.RSPlug.A and OSX.Iservice, two known Trojan horse programs targeting Mac OS X users.

Read more...

Categories: Malware, Vulnerabilities

[img_assist|nid=2504|title=|desc=|link=none|align=left|width=100|height=100]Version 8.14.4 of Sendmail, the open source mail transfer agent (MTA),
includes fixes for several security vulnerabilities including some
integer overflows, memory leaks and for the SSL NUL character problem
disclosed in mid 2009. Read the full article. [The H Security]

Read more...

Categories: Malware, Vulnerabilities

[img_assist|nid=2506|title=|desc=|link=none|align=left|width=100|height=100]Despite the fact that the majority of malware exploits use JavaScript to trigger an attack in Adobe’s PDF Reader product, the company says it’s impossible to completely remove JavaScript support without causing major compatibility problems.In a Q&A (listen to podcast) with Threatpost editors Dennis Fisher and Ryan Naraine, Adobe security chief Brad Arkin says the removal of JavaScript support is a non-starter because it’s an integral part of how users do form submissions.

Read more...

[img_assist|nid=2497|title=|desc=|link=none|align=left|width=100|height=100]The micro-blogging service rejects 370 passwords when new users sign up if
it thinks they are too easy to guess. However, bloggers recently discovered
that the list of banned passwords is embedded in the source code of the page
itself. Read the full article. [Telegraph UK]

Read more...