4334 IRC/SdBot, JS/Exploit.Pdfka.NLC, Win32/AutoRun.ABH, Win32/AutoRun.FakeAlert.AF (2), Win32/AutoRun.FakeAlert.CV (2), Win32/AutoRun.FlyStudio.PJ, Win32/Flyagent.NBT, Win32/FlyStudio.NRL (2), Win32/Httpbot.XS, Win32/IRCBot.AMQ (2), Win32/KillAV.NEQ (2), Win32/KillAV.NER, Win32/Kryptik.AEP, Win32/PcClient (2), Win32/PSW.Consgra.A (2), Win32/SpamTool.Tedroo.AB (2), Win32/Spy.Banbra.NPZ, Win32/Spy.Banker.RMQ, Win32/Spy.Banker.SAA, Win32/Spy.Banker.SAD, Win32/Spy.Zbot.JF (3), Win32/TrojanClicker.Agent.NGR URL: http://www.eset.com/joomla/index.php?option=com_content&task=view&id=6367&Itemid=26
Posts under ‘Security’
QSAs Let Us Down
Bugtraq: Fwd: Follow-up: Heartland CEO on Data Breach: QSAs Let Us Down Fwd: Follow-up: Heartland CEO on Data Breach: QSAs Let Us Down URL: http://www.securityfocus.com/archive/1/505744
0562 (isa_server, office, office_web_components)
CVE-2009-0562 (isa_server, office, office_web_components) The Office Web Components ActiveX Control in Microsoft Office XP SP3, Office 2003 SP3, Office XP Web Components SP3, Office 2003 Web Components SP3, Office 2003 Web Components SP1 for the 2007 Microsoft Office System, Internet Security and Acceleration (ISA) Server 2004 SP3 and 2006 SP1, and Office Small Business Accounting [...]
Multiple Vulnerabilities in Wireless LAN Controllers
Multiple Vulnerabilities in Wireless LAN Controllers Multiple vulnerabilities exist in the Cisco Wireless LAN Controller (WLC) platforms. URL: http://www.cisco.com/en/US/products/products_security_advisory09186a0080adb3d7.shtml
A rise in cybercrime hits SMBs
A rise in cybercrime hits SMBs Forty four percent of U.S. SMBs have been hit by some form of cybercrime and 10 percent were hit so bad that they had to stop production, according to a survey from Panda Security. URL: http://feedproxy.google.com/~r/SCMagazineHome/~3/94koVN-33Lg/
NcFTPd <= 2.8.5 remote jail breakout
Bugtraq: Re: NcFTPd <= 2.8.5 remote jail breakout Re: NcFTPd <= 2.8.5 remote jail breakout URL: http://www.securityfocus.com/archive/1/505293
computer crime statistics
RE: computer crime statistics <!– Envelope-to: email@address Delivery-date: Mon, 27 Jul 2009 22:22:29 +0100 Received: from outgoing.securityfocus.com ([205.206.231.27] helo=outgoing3.securityfocus.com) by lt.network5.net with esmtp (Exim 4.43) id 1MVXeP-0004ru-8D for email@address; Mon, 27 Jul 2009 22:22:29 +0100 Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20]) by outgoing3.securityfocus.com (Postfix) with QMQP id 7CBE42371F8; Mon, 27 Jul 2009 15:19:13 -0600 (MDT) Mailing-List: [...]
URL spoofing bug involving Firefox’s error pages and document.write
Bugtraq: Re: URL spoofing bug involving Firefox’s error pages and document.write Re: URL spoofing bug involving Firefox’s error pages and document.write URL: http://www.securityfocus.com/archive/1/505267
EMC Documentum IRM
EMC Documentum IRM EMC Documentum Information Rights Management (IRM) encrypts and persistently protects documents from unauthorized viewing, copying and printing, regardless of where the document physically resides. URL: http://feedproxy.google.com/~r/SCMagazineHome/~3/u3LKnkRqVIk/
SQLi Vulnerability Scanners
Re: SQLi Vulnerability Scanners Posted by Taras on Jul 26 On Fri, 17 Jul 2009 13:17:10 -0300 Ulises2k <ulises2k_at_gmail.com> wrote: > Try this: > > GUI > http://w3af.sf.net W3AF has also perfect console UI and furthermore it has SQLmap integration. URL: http://seclists.org/pen-test/2009/Jul/0097.html
sqlmap 0.7 released
[Tool] sqlmap 0.7 released Posted by Bernardo Damele A. G. on Jul 26 Hi, I am glad to release sqlmap version 0.7. Introduction ============ sqlmap is an open source command-line automatic SQL injection tool. Its goal is to detect and take advantage of SQL injection vulnerabilities in web applications. Once it detects one or more [...]
Chinese hackers attack Melbourne Film Festival website
Chinese hackers attack Melbourne Film Festival website HACKERS have defaced the website of the Melbourne Film Festival over a documentary about an exiled separatist leader accused by China of plotting riots. Messages attacking Uighur leader Rebiya Kadeer, along with images of the Chinese flag, were posted on the festival’s site over the weekend. Festival director [...]
n3td3v honored at blackhat 2009 USA – best security intrusion specialist
n3td3v honored at blackhat 2009 USA – best security intrusion specialist Posted by antisecav_at_hushmail.com on Jul 26 ATTENTION n3tD3v (www.twitter.com/n3td3v): Thank you for all your help with the antisec movement. We hope your grant with the intelligence community goes well! This is Alex Jones, from Infowars, Over and out. URL: http://seclists.org/fulldisclosure/2009/Jul/0408.html
I wouldn’t trust Google with my personal info
I wouldn¡¦t trust Google with my personal info David Davis, Conservative MP for Haltemprice & Howden, has an op-ed in The Times that begins: When I read in the pages of this newspaper this month that the Conservative Party was planning to transfer people¡¦s health data to Google, my heart sank. The policy described was [...]
Service vulnerability
Cisco WLC 4402 Denial-of-Service vulnerability Posted by SySS security advisories — Christoph Bott on Jul 26 ======================================= Vulnerable Product: Cisco WLC 4402 (most likely among many others) Vulnerability discovered: January 2009 Reported to vendor: Jan 01, 2009 Fix available: not yet ======================================= TIMELINE: … URL: http://seclists.org/fulldisclosure/2009/Jul/0407.html
