Cisco Patches DoS, Information Disclosure Flaws in Small Business Switches
Cisco this week informed customers that some of its Small Business Switches are affected by high-severity vulnerabilities that can be exploited to obtain sensitive device information and to launch denial-of-service (DoS) attacks. read more more…Russia Blocks Swiss-based ProtonMail Over Wave of Bomb Threats
Russia has blocked a second encrypted email provider, Swiss-based ProtonMail, in efforts to halt a prolonged series of anonymous bomb threats, the security service said Wednesday. The FSB security service said Russia acted against Geneva-based ProtonMail after blocking another social network, Netherlands-based Smartmail, for the same reason last week. read more more…Millions of Devices Using LoRaWAN Exposed to Hacker Attacks
Millions of devices deployed across a wide range of sectors could be exposed to hacker attacks due to security issues associated with the use of LoRaWAN, cybersecurity firm IOActive warned on Tuesday. read more more…This Website Lets You Track The Global Spread of Wuhan Coronavirus in Real Time
This Website Lets You Track The Global Spread of Wuhan Coronavirus in Real Time l33tdawg Tue, 01/28/2020 – 00:12 more…Looking for silver linings in the CVE-2020-0601 crypto vulnerability
Is there some good news hidden in the story of the CVE-2020-0601 crypto vulnerability? more…Hanna Andersson Data Breach: Hackers Compromise Website of Children’s Clothier
Portland, Oregon-based children’s clothing maker Hanna Andersson has quietly disclosed a breach to affected customers. Very few details of the breach have been made public. read more more…NortonLifeLock to Sell ID Analytics Business to LexisNexis Risk Solutions
NortonLifeLock (NASDAQ: NLOK) announced on Monday that it has agreed to sell its ID Analytics business to LexisNexis Risk Solutions for $375 million. read more more…First Active Attack Exploiting CVE-2019-2215 Found on Google Play, Linked to SideWinder APT Group
by Ecular Xu and Joseph C Chen We found three malicious apps in the Google Play Store that work together to compromise a victim’s device and collect user information. One of these apps, called Camero, exploits CVE-2019-2215, a vulnerability that exists in Binder (the main Inter-Process Communication system in Android). This is the first known active […] more…Hackers post bloodied image of Trump on US government website
Hackers post bloodied image of Trump on US government website l33tdawg Mon, 01/06/2020 – 00:29 more…Troj/MSIL-NLO
more…Employee error to blame for massive data leak, Wyze says
Employee error to blame for massive data leak, Wyze says l33tdawg Tue, 12/31/2019 – 00:54 more…Looking into Attacks and Techniques Used Against WordPress Sites
By David Fiser (Senior Cyber Threat Researcher) WordPress is a well-known open-source content management system (CMS) used for creating websites and personal blogs. The CMS is estimated to be used by 35% of all websites today, which makes it an ideal target for threat actors. A weak point in the platform is all it takes […] more…How we developed our simple Harbour decompiler
https://github.com/KasperskyLab/hb_dec Every once in a while we get a request that leaves us scratching our heads. With these types of requests, existing tools are usually not enough and we have to create our own custom tooling to solve the “problem”. One such request dropped onto our desk at the beginning of 2018, when one of […] more…Telos AMHS Multiple Cross Site Scripting and Information Disclosure Vulnerabilities
Type: Vulnerability. Telos AMHS is prone to multiple cross-site scripting vulnerabilities and an information-disclosure vulnerability; fixes are available. more…Former Palo Alto Networks Employee Charged With Insider Trading
A former employee of Palo Alto Networks and his friends have been charged by the U.S. Securities and Exchange Commission (SEC) for their roles in an insider trading ring. read more more…Former Siemens Contractor Sentenced to Prison for Planting Logic Bombs
A 62-year-old man from Harrison City, Pennsylvania, has been sentenced to prison for planting logic bombs in programs he created for German industrial giant Siemens. read more more…More information
- BlackBerry offers secure mobile communications platform for developers
- BrandPost: Bigger Together: How to Maximize Mainframe’s Value
- How to report a computer crime: SQL injection website attack
- Multiple Honeywell Products CVE-2019-18230 Unauthorized Access Vulnerability
- Sony could detect PlayStation users based on how they hold a controller
- Canadian Bookstore Chain Indigo Says Employee Data Stolen in Ransomware Attack
- Microsoft Windows CVE-2018-8136 Remote Code Execution Vulnerability
- Defray Ransomware Used in Selective Attacks Against Multiple Sectors
- Apple computers vulnerable to ‘Thunderstrike 2’ firmware worm
- InfoSec Lessons from Board Games with a Toddler