Debian Linux Security Advisory 3064-1 – Several vulnerabilities were found in PHP, a general-purpose scripting language commonly used for web application development. It has been decided to follow the stable 5.4.x releases for the Wheezy PHP packages. Consequently the vulnerabilities are addressed by upgrading PHP to a new upstream version 5.4.34, which includes additional bug fixes, new features and possibly incompatible changes. Please refer to the upstream changelog for more information.
Monthly Archives: November 2014
Red Hat Security Advisory 2014-1803-01
Red Hat Security Advisory 2014-1803-01 – mod_auth_mellon provides a SAML 2.0 authentication module for the Apache HTTP Server. An information disclosure flaw was found in mod_auth_mellon’s session handling that could lead to sessions overlapping in memory. A remote attacker could potentially use this flaw to obtain data from another user’s session. It was found that uninitialized data could be read when processing a user’s logout request. By attempting to log out, a user could possibly cause the Apache HTTP Server to crash.
Crypto Collision Used To Hijack Windows Update Goes Mainstream
Facebook Sees 24% Uptick In Government Requests For User Data
NSA Critic Udall Is Sent Packing As Republicans Grab Senate
Google Rolls Out 'Nogotofail' To Test Sites For Security Vulnerabilities
NSA Director Says Agency Shares Vast Majority of Bugs it Finds
When the National Security Agency discovers a new vulnerability that looks like it might be of use in penetrating target networks, the agency considers a number of factors, including how popular the affected software is and where it’s typically deployed, before deciding whether to share the new bug. The agency shares most of the bugs […]
WatchGuard Technologies Partners with Fujitsu Fsas to Deliver Managed Network Security Solutions in Japan
WatchGuard Next Generation Firewalls and Unified Threat Management appliances selected for breadth of security services, system management and real-time visibility tools
Facebook Events Scams
Facebook events have become one of the easiest and quickest ways of scamming people on social networks.
In the last few days many such events have been organized by malicious users. There are several aims that range from subscribing people to premium-rate SMS services to creating pages with thousands of followers for advertising purposes.
But how do these events work? The scam is similar to the one we reported a few months ago that claimed to offer a €500 gift voucher for Zara. They use the names of popular brands such as Zara, H&M, Apple or Primark to interest as many people as possible.
Facebook Events Scams
It works as follows:
- You attend an event at the invitation of a friend or contact on Facebook.
- You invite your contacts.
- You post a comment on the event wall saying how much you like the brand or answer a question from the event organizers about the product.
- In some cases, participation in the event is subject to entering personal details such as your phone number, which can end up with you being subscribed to a premium-rate SMS service.
The best thing to do with these types of events is to keep your guard up, and before taking part, check that it is really organized by the company in question.
In any case, you should never enter personal data on pages that you do not trust completely. That way you can prevent your data from falling into the wrong hands.
The post Facebook Events Scams appeared first on MediaCenter Panda Security.
Reasons you can be kicked out of WhatsApp
“Your number is no longer allowed to use our serviceâ€. Do you know what service it is? WhatsApp. That’s right, WhatsApp. Did you know that the app reserves the right to ban users that don’t abide by the terms and conditions of use?
Reasonable enough. The only problem is that they don’t warn you. So, given that forewarned is forearmed, here are some of the things that WhatsApp might ban you for.
Reasons you can be banned from WhatsApp
- Being blocked by a certain number of users
- Sending chain messages
- Using the platform for advertising purposes
- Sharing obscene or illicit material
- Spreading files with viruses
- Pretending to be another person
The company also reserves the right to delete messages that are too long or of limited interest.
The question you have to ask though is… To what extent are our WhatsApp conversations private?
The post Reasons you can be kicked out of WhatsApp appeared first on MediaCenter Panda Security.