security

Mandriva: 2015:062: openssl

LinuxSecurity.com - Fri, 2015-03-27 04:10
LinuxSecurity.com: Multiple vulnerabilities has been discovered and corrected in openssl: Race condition in the ssl3_read_bytes function in s3_pkt.c in OpenSSL through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, allows remote attackers to inject data across sessions or cause a denial of [More...]
Categories: linux, news, security

Debian: 3205-1: batik: Summary

LinuxSecurity.com - Fri, 2015-03-27 03:00
LinuxSecurity.com: Security Report Summary
Categories: linux, news, security

Patched Flash Vulnerability Now Part of Exploit Kit (March 20, 2015)

SANS NewsBites - Thu, 2015-03-26 22:36

A vulnerability in Adobe's Flash Player that was patched on March 12 has already been added to an exploit kit.......

Categories: security

Short Duration DDoS Attacks on the Rise (March 23, 2015)

SANS NewsBites - Thu, 2015-03-26 22:36

According to Corero's DDoS Trends and Analysis quarterly report, distributed denial-of-service (DDoS) attacks with short durations and lower bandwidth are becoming more prevalent.......

Categories: security

Google Warns of Unauthorized TLS Certificates (March 23, 2015)

SANS NewsBites - Thu, 2015-03-26 22:36

Google has issued a warning that unauthorized digital certificates were issued for some of its domains.......

Categories: security

PoSeidon Malware Stealing Payment Card Data (March 23, 2015)

SANS NewsBites - Thu, 2015-03-26 22:36

Malware dubbed PoSeidon targets point-of-sale systems.......

Categories: security

Swedish Teen Fined Over Breach (March 23, 2015)

SANS NewsBites - Thu, 2015-03-26 22:36

The Swedish municipality of Umea is seeking SEK 500,000 (US $58,700) from a teenager who broke into Umea's municipal system and caused damage.......

Categories: security

Hilton Honors Loyalty Club Accounts at Risk (March 23, 2015)

SANS NewsBites - Thu, 2015-03-26 22:36

A flaw in the way the Hilton Honors loyalty club is managed online puts all user accounts at risk of being taken over with a cross-site request forgery attack.......

Categories: security

Man Facing 16 Felony Accounts Over High School Grade-Changing Scheme (March 20 & 22, 2015)

SANS NewsBites - Thu, 2015-03-26 22:36

Timothy Lance Lai, who allegedly broke into the network of a California high school and changed students grades, is now facing felony charges of computer access and fraud for his alleged role in a keylogging ring at the high school that saw 11 students expelled.......

Categories: security

New South Wales Moves to Fix Electronic Voting Vulnerability (March 22 & 23, 2015)

SANS NewsBites - Thu, 2015-03-26 22:36

The New South Wales (Australia) Electoral Commission is taking steps to fix a vulnerability in the electronic voting system they use that could put voters at risk of having their ballots manipulated.......

Categories: security

Malvertising on the Rise (March 22, 2015)

SANS NewsBites - Thu, 2015-03-26 22:36

Malvertising is more insidious than some other forms of attacks because it situates itself within web pages, piggybacking on advertising that targets users.......

Categories: security

Rocket Kitten Cyber Attack Group Has New Campaign (March 20, 2015)

SANS NewsBites - Thu, 2015-03-26 22:36

A group known as Rocket Kitten and believed to be responsible for attacks on systems belonging to organizations in Europe and Israel has launched a new campaign.......

Categories: security

Chinese Anti-Censorship Group Hit with DDoS Attack (March 20, 2015)

SANS NewsBites - Thu, 2015-03-26 22:36

A group of anonymous activists that monitor online censorship in China has come under attack.......

Categories: security

Girls Hack Ireland (March 20 & 23, 2015)

SANS NewsBites - Thu, 2015-03-26 22:36

On March 21, nearly 100 teenage girls participated in the Girls Hack Ireland event where they learned how to manipulate web pages and build websites.......

Categories: security

New Zealand's XKEYSCORE Use

Schneier on Security - Thu, 2015-03-26 10:46
The Intercept and the New Zealand Herald have reported that New Zealand spied on communications about the World Trade Organization director-general candidates. I'm not sure why this is news; it seems like a perfectly reasonable national intelligence target. More interesting to me is that the Intercept published the XKEYSCORE rules. It's interesting to see how primitive the keyword targeting is,...
Categories: security

Red Hat: 2015:0729-01: setroubleshoot: Important Advisory

LinuxSecurity.com - Thu, 2015-03-26 10:24
LinuxSecurity.com: Updated setroubleshoot packages that fix one security issue are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security [More...]
Categories: linux, news, security

Red Hat: 2015:0728-01: ipa and slapi-nis: Moderate Advisory

LinuxSecurity.com - Thu, 2015-03-26 10:19
LinuxSecurity.com: Updated ipa and slapi-nis packages that fix two security issues and several bugs are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security [More...]
Categories: linux, news, security

Red Hat: 2015:0726-01: kernel: Important Advisory

LinuxSecurity.com - Thu, 2015-03-26 10:11
LinuxSecurity.com: Updated kernel packages that fix two security issues and several bugs are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security [More...]
Categories: linux, news, security

Red Hat: 2015:0727-01: kernel-rt: Important Advisory

LinuxSecurity.com - Thu, 2015-03-26 10:11
LinuxSecurity.com: Updated kernel-rt packages that fix two security issues and several bugs are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security [More...]
Categories: linux, news, security

How Kevin Mitnick hacked the audience at CeBIT 2015

LinuxSecurity.com - Thu, 2015-03-26 04:38
LinuxSecurity.com: CeBIT attendees on Thursday fell victims to a series of well-executed hacks. Thankfully, they weren't malicious in origin; instead, they were live demonstrations by notorious ex-hacker Kevin Mitnick.
Categories: linux, news, security

Pages