ATENTIONβΌ New - CVE-2016-10823
π Read
via "National Vulnerability Database".
cPanel before 55.9999.141 allows arbitrary code execution in the context of the root account because of MakeText interpolation (SEC-89).π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2016-10822
π Read
via "National Vulnerability Database".
cPanel before 55.9999.141 allows self XSS in X3 Reseller Branding Images (SEC-88).π Read
via "National Vulnerability Database".
π΄ 1M Payment Cards Exposed in South Korea Breach π΄
π Read
via "Dark Reading: ".
South Korea is the largest victim of card present data theft at a time when criminals are ramping up cyberattacks in the Asia-Pacific region.π Read
via "Dark Reading: ".
Darkreading
1M Payment Cards Exposed in South Korea Breach
South Korea is the largest victim of card present data theft at a time when criminals are ramping up cyberattacks in the Asia-Pacific region.
ATENTIONβΌ New - CVE-2016-10815
π Read
via "National Vulnerability Database".
cPanel before 57.9999.54 allows arbitrary file-read operations for Webmail accounts via Branding APIs (SEC-120).π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2016-10814
π Read
via "National Vulnerability Database".
cPanel before 57.9999.54 allows demo-mode escape via show_template.stor (SEC-119).π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2016-10813
π Read
via "National Vulnerability Database".
cPanel before 57.9999.54 allows self XSS during ftp account creation under addon domains (SEC-118).π Read
via "National Vulnerability Database".
π΄ PCI Security Council, Retail ISAC Warn Retailers on Magecart Attacks π΄
π Read
via "Dark Reading: ".
Online card-skimming activities grew sharply this summer fueled by the availability of attack kits and other factors, Malwarebytes says.π Read
via "Dark Reading: ".
Darkreading
PCI Security Council, Retail ISAC Warn Retailers on Magecart Attacks
Online card-skimming activities grew sharply this summer fueled by the availability of attack kits and other factors, Malwarebytes says.
π΄ DARPA to Bring its Smart Ballot Boxes to DEF CON for Hacking π΄
π Read
via "Dark Reading: ".
The agency this week will share the source code and hardware specifications for the secure voting system prototypes.π Read
via "Dark Reading: ".
Dark Reading
DARPA to Bring its Smart Ballot Boxes to DEF CON for Hacking
The agency this week will share the source code and hardware specifications for the secure voting system prototypes.
π΄ Cisco Pays $8.6M in First False Claims Suit for Vulnerabilities in Security Product π΄
π Read
via "Dark Reading: ".
A security consultant reported vulnerabilities in Cisco's Video Surveillance Manager in 2009 - but the company ignored the issues and fired the consultant.π Read
via "Dark Reading: ".
Dark Reading
Cisco Pays $8.6M in First False Claims Suit for Vulnerabilities in Security Product
A security consultant reported vulnerabilities in Cisco's Video Surveillance Manager in 2009 - but the company ignored the issues and fired the consultant.
π΄ 47% of Android Anti-Malware Apps Are Flawed π΄
π Read
via "Dark Reading: ".
Protection failures come at a time when malicious Android software is becoming more of a problem.π Read
via "Dark Reading: ".
Darkreading
47% of Android Anti-Malware Apps Are Flawed
Protection failures come at a time when malicious Android software is becoming more of a problem.
π΄ Why Every Organization Needs an Incident Response Plan π΄
π Read
via "Dark Reading: ".
OK, perhaps that's self-evident, so how come it far too often still takes an incident to trigger planning?π Read
via "Dark Reading: ".
Dark Reading
Why Every Organization Needs an Incident Response Plan
OK, perhaps that's self-evident, so how come it far too often still takes an incident to trigger planning?
β Facebook is working on mind-reading β
π Read
via "Naked Security".
The completely non-evil-genius goal: a wearable, noninvasive device that could translate thoughts into text, for the speech impaired or VR.π Read
via "Naked Security".
Naked Security
Facebook is working on mind-reading
The completely non-evil-genius goal: a wearable, noninvasive device that could translate thoughts into text, for the speech impaired or VR.
β Anime filter glitches, exposing face of one extremely smart vlogger β
π Read
via "Naked Security".
Pretending to be a hot young thing brought in beaucoup bucks. Last laugh department: "world's best granny" now has more followers than ever.π Read
via "Naked Security".
Naked Security
Anime filter glitches, exposing face of one extremely smart vlogger
Pretending to be a hot young thing brought in beaucoup bucks. Last laugh department: βworldβs best grannyβ now has more followers than ever.
β Club Penguin Rewritten breach caused by rogue admin backdoor β
π Read
via "Naked Security".
The hugely popular gaming site Club Penguin Rewritten suffered a data breach that exposed 4m user accounts.π Read
via "Naked Security".
Naked Security
Club Penguin Rewritten breach caused by rogue admin backdoor
The hugely popular gaming site Club Penguin Rewritten suffered a data breach that exposed 4m user accounts.
β Space agency uses Raspberry Pi to solve satellite encryption puzzle β
π Read
via "Naked Security".
The European Space Agency thinks it's found a much cheaper way to control a small module - and it's built around a tiny Raspberry Pi Zero board.π Read
via "Naked Security".
Naked Security
Space agency uses Raspberry Pi to solve satellite encryption puzzle
The European Space Agency thinks itβs found a cheaper way to control a small module β and itβs built around a tiny Raspberry Pi Zero.
β Apple Suspends Siri Program After Privacy Backlash β
π Read
via "Threatpost".
Apple's Siri follows Amazon Alexa and Google Home in facing backlash for its data retention policies.π Read
via "Threatpost".
Threat Post
Apple Suspends Siri Program After Privacy Backlash
Apple's Siri follows Amazon Alexa and Google Home in facing backlash for its data retention policies.
β 90% of Enterprise iPhone Users Open to iMessage Spy Attack β
π Read
via "Threatpost".
Vast majority of Apple iOS users haven't updated to iOS 12.4, leaving themselves wide open to a public exploit.π Read
via "Threatpost".
Threat Post
90% of Enterprise iPhone Users Open to iMessage Spy Attack
Vast majority of Apple iOS users haven't updated to iOS 12.4, leaving themselves wide open to a public exploit.
π΄ Black Hat: A Summer Break from the Mundane and Uncontrollable π΄
π Read
via "Dark Reading: ".
Enjoy the respite from the security tasks that await you back at home. Then prepare yourself for the uphill battles to come. Here's how.π Read
via "Dark Reading: ".
Dark Reading
Vulnerabilities & Threats recent news | Dark Reading
Explore the latest news and expert commentary on Vulnerabilities & Threats, brought to you by the editors of Dark Reading
ATENTIONβΌ New - CVE-2014-8184
π Read
via "National Vulnerability Database".
A vulnerability was found in liblouis, versions 2.5.x before 2.5.4. A stack-based buffer overflow was found in findTable() in liblouis. An attacker could create a malicious file that would cause applications that use liblouis (such as Orca) to crash, or potentially execute arbitrary code when opened.π Read
via "National Vulnerability Database".
π΄ Black Hat: A Summer Break from the Mundane and Controllable π΄
π Read
via "Dark Reading: ".
Enjoy the respite from the security tasks that await you back at home. Then prepare yourself for the uphill battles to come. Here's how.π Read
via "Dark Reading: ".
Dark Reading
Vulnerabilities & Threats recent news | Dark Reading
Explore the latest news and expert commentary on Vulnerabilities & Threats, brought to you by the editors of Dark Reading
π Friday Five: 8/2 Edition π
π Read
via "Subscriber Blog RSS Feed ".
A trio of breaches, the plight of IT budgets in the U.K., and hackers hitting school districts - catch up on the week's news with this roundup!π Read
via "Subscriber Blog RSS Feed ".
Digital Guardian
Friday Five: 8/2 Edition
A trio of breaches, the plight of IT budgets in the U.K., and hackers hitting school districts - catch up on the week's news with this roundup!