β sLoad Malware Revamped as Powerful βStarsLordβ Loader β
π Read
via "Threatpost".
The newest version of the sLoad malware dropper comes equipped with infection tracking capabilities and an anti-analysis trick.π Read
via "Threatpost".
Threat Post
sLoad Malware Revamped as Powerful βStarsLordβ Loader
The newest version of the sLoad malware dropper comes equipped with infection tracking capabilities and an anti-analysis trick.
π Logwatch 7.5.3 π
π Go!
via "Security Tool Files β Packet Storm".
Logwatch analyzes and reports on unix system logs. It is a customizable and pluggable log monitoring system which will go through the logs for a given period of time and make a customizable report. It should work right out of the package on most systems.π Go!
via "Security Tool Files β Packet Storm".
Packetstormsecurity
Logwatch 7.5.3 β Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
π΄ Startup Privafy Raises $22M with New Approach to Network Security π΄
π Read
via "Dark Reading: ".
The company today disclosed an approach to data security designed to protect against modern threats at a lower cost than complex network tools.π Read
via "Dark Reading: ".
Dark Reading
Startup Privafy Raises $22M with New Approach to Network Security
The company today disclosed an approach to data security designed to protect against modern threats at a lower cost than complex network tools.
ATENTIONβΌ New - CVE-2011-3610
π Read
via "National Vulnerability Database".
A Cross-site Scripting (XSS) vulnerability exists in the Serendipity freetag plugin before 3.30 in the tagcloud parameter to plugins/serendipity_event_freetag/tagcloud.swf.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2011-3595
π Read
via "National Vulnerability Database".
Multiple Cross-site Scripting (XSS) vulnerabilities exist in Joomla! through 1.7.0 in index.php in the search word, extension, asset, and author parameters.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2011-3582
π Read
via "National Vulnerability Database".
A Cross-site Request Forgery (CSRF) vulnerability exists in Advanced Electron Forums (AEF) through 1.0.9 due to inadequate confirmation for sensitive transactions in the administrator functions.π Read
via "National Vulnerability Database".
β Big Microsoft data breach β 250 million records exposed β
π Read
via "Naked Security".
Microsoft has today announced a data breach that affected one of its customer databases.π Read
via "Naked Security".
Sophos News
Naked Security β Sophos News
π Analysts question whether FBI election cybersecurity changes are robust enough π
π Read
via "Security on TechRepublic".
New guidelines show how the agency will coordinate with state officials in the event of a cyberattack on election infrastructure.π Read
via "Security on TechRepublic".
TechRepublic
Analysts question whether FBI election cybersecurity changes are robust enough
New guidelines show how the agency will coordinate with state officials in the event of a cyberattack on election infrastructure.
π΄ 'We Only Have Two of the Blinky Boxes Left to Go' π΄
π Read
via "Dark Reading: ".
Exactly who is king of the castle here?π Read
via "Dark Reading: ".
Dark Reading
'We Only Have Two of the Blinky Boxes Left to Go' - Dark Reading
Exactly who is king of the castle here?
π΄ Why DPOs and CISOs Must Work Closely Together π΄
π Read
via "Dark Reading: ".
Recent data protection laws mean that the data protection officer and CISO must work in tandem to make sure users' data is protected.π Read
via "Dark Reading: ".
Darkreading
Why DPOs and CISOs Must Work Closely Together
Recent data protection laws mean that the data protection officer and CISO must work in tandem to make sure users' data is protected.
π΄ Configuration Error Reveals 250 Million Microsoft Support Records π΄
π Read
via "Dark Reading: ".
Some the records, found on five identically configured servers, might have contained data in clear text.π Read
via "Dark Reading: ".
Dark Reading
Application Security recent news | Dark Reading
Explore the latest news and expert commentary on Application Security, brought to you by the editors of Dark Reading
π NIST Issues Version 1.0 of Privacy Framework π
π Read
via "Subscriber Blog RSS Feed ".
NIST released new guidance last week, its Privacy Framework, that can be used by organizations as a risk management tool, to answer questions about its privacy posture, or establish its own program.π Read
via "Subscriber Blog RSS Feed ".
Digital Guardian
NIST Issues Version 1.0 of Privacy Framework
NIST released its inaugural Privacy Framework last week. The document can be used by organizations as a risk management tool, to answer questions about its privacy posture, or establish its own program.
ATENTIONβΌ New - CVE-2011-3621
π Read
via "National Vulnerability Database".
A reverse proxy issue exists in FluxBB before 1.4.7 when FORUM_BEHIND_REVERSE_PROXY is enabled.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2011-3614
π Read
via "National Vulnerability Database".
An Access Control vulnerability exists in the Facebook, Twitter, and Embedded plugins in Vanilla Forums before 2.0.17.9.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2011-3613
π Read
via "National Vulnerability Database".
An issue exists in Vanilla Forums before 2.0.17.9 due to the way cookies are handled.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2011-3612
π Read
via "National Vulnerability Database".
Cross-Site Request Forgery (CSRF) vulnerability exists in panel.php in UseBB before 1.0.12.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2011-3611
π Read
via "National Vulnerability Database".
A File Inclusion vulnerability exists in act parameter to admin.php in UseBB before 1.0.12.π Read
via "National Vulnerability Database".
π΄ Eight Flaws in MSP Software Highlight Potential Ransomware Vector π΄
π Read
via "Dark Reading: ".
An attack chain of vulnerabilities in ConnectWise's software for MSPs has similarities to some of the details of the August attack on Texas local and state agencies.π Read
via "Dark Reading: ".
Dark Reading
Eight Flaws in MSP Software Highlight Potential Ransomware Vector
An attack chain of vulnerabilities in ConnectWise's software for MSPs has similarities to some of the details of the August attack on Texas local and state agencies.
π 3 biggest threats cybersecurity professionals are facing in 2020 π
π Read
via "Security on TechRepublic".
Organizations are moving toward next-generation cybersecurity solutions this year, but security fragmentation is a looming threat.π Read
via "Security on TechRepublic".
TechRepublic
3 biggest threats cybersecurity professionals are facing in 2020
Organizations are moving toward next-generation cybersecurity solutions this year, but security fragmentation is a looming threat.
π How to disconnect devices and revoke app privileges from your Firefox cloud account π
π Read
via "Security on TechRepublic".
You'll be surprised at how many devices, apps, and services are associated with your Firefox cloud account. Find out how to remove them.π Read
via "Security on TechRepublic".
TechRepublic
How to disconnect devices and revoke app privileges from your Firefox cloud account
You'll be surprised at how many devices, apps, and services are associated with your Firefox cloud account. Find out how to remove them.
ATENTIONβΌ New - CVE-2011-3622
π Read
via "National Vulnerability Database".
A Cross-Site Scripting (XSS) vulnerability exists in the admin login screen in Phorum before 5.2.18.π Read
via "National Vulnerability Database".