This isn't breaking news, but this is a pretty good article over at WIRED Threat Level.
Over $2 Million dollars is siphoned out of banks with the use of fake cards. And it all started from a hack of the 7-Eleven public facing website.
http://www.wired.com/threatlevel/2009/12/seven-eleven/
Monday, December 21, 2009
Saturday, December 12, 2009
Bank firewalls cracked by cyberhackers
Ok, this is a stupid and misleading title. If you read the story, it is more about user accounts getting compromised via malware/etc.... It isn't about "cyberhackers" cracking bank firewall perimeters at all.
Here is the story with the stupid title:
Bank firewalls cracked by cyberhackers
Here is the story with the stupid title:
Bank firewalls cracked by cyberhackers
Tuesday, December 8, 2009
It's MS Patch Tuesday!!
There's a critical Internet Explorer in this bunch you should get patched first....
See the Microsoft Security Bulletin Summary for December 2009
See the MSRC Exploitability Index and Deployment Priority
Happy Patching!!
See the Microsoft Security Bulletin Summary for December 2009
See the MSRC Exploitability Index and Deployment Priority
Happy Patching!!
How to build and maintain a tiered WSUS infrastructure
Here is a link to a great article over at Ars Technica about building and maintaining a tiered WSUS infrastructure. This really is a good thing to do to help eliminate the vulnerabilities where you can immediately and get the more difficult patching done when it is safe.
Ars Technica: How to build and maintain a tiered WSUS infrastructure
Ars Technica: How to build and maintain a tiered WSUS infrastructure
Insider Threat Now
This is an really interesting article by Dr. Cole over at DarkReading.com about the insider threat. No, not your typical warning....it is a real example of the threats that insiders pose. Ouch!
Insider Threat is Happening
Insider Threat is Happening
Tuesday, December 1, 2009
FreeBSD local root zeroday
This is a local FreeBSD local root zeroday exploit. Releases 8.0 and 7.1 are vulnerable, older versions may not be. There is a patch that is out to fix this.
Exploit here: http://www.exploit-db.com/exploits/10255
Patch info: http://www.securityfocus.com/archive/1/508146
Exploit here: http://www.exploit-db.com/exploits/10255
Patch info: http://www.securityfocus.com/archive/1/508146
Saturday, November 21, 2009
Van Eck Phreaking Brazilian voting machines
Now this is pretty cool! A security tester named Sergio Freitas da Silva, was able collect cast ballots by Van Eck Phreaking.
This is a Google translated page of the IDG NOW! article:
http://bit.ly/6WDonV
This is a Google translated page of the IDG NOW! article:
http://bit.ly/6WDonV
Wednesday, November 18, 2009
The CyberWar Plan
This is a real interesting story over at NationalJournal.com about the use of CyberAttacks for real warfighting operations.
The Cyberwar Plan
The Cyberwar Plan
Tuesday, November 17, 2009
Metasploit 3.3 released
Just in case you haven't read it already, Metasploit 3.3 is available. Lots of bug fixes, but a lot of sweet new features.
Metasploit 3.3 Release notes
Metasploit 3.3 download
Metasploit 3.3 Release notes
Metasploit 3.3 download
Offensive Security Exploit Database alive!!
The crew over at Offensive Security took over the dormant milw0rm exploit archive. You can see the new Offensive Security Exploit Database here:
http://exploits.offsec.com or at http://explo.it
http://exploits.offsec.com or at http://explo.it
Subscribe to:
Posts (Atom)