Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Monthly Archives: June 2016
HP Security Bulletin HPSBMU03612 1
HP Security Bulletin HPSBMU03612 1 – Multiple potential security vulnerabilities have been identified with HPE Insight Control (IC) on Windows which could be exploited remotely resulting in Denial of Service (DoS), Unauthorized Access, Cross-site scripting (XSS), Execution of Arbitrary code, Disclosure of Sensitive Information,Remote Code Execution and locally resulting in Cross-site Request Forgery (CSRF). Revision 1 of this advisory.
Report: Federal Reserve Target of Constant Attacks
The U.S. Federal Reserve reported 50 breaches over the past five years including two that it is classifying as acts of cyber espionage, according to a Reuters Freedom of Information Request.
Nagios XI 5.2.7 Code Execution / SQL Injection / Privilege Escalation
Nagios XI versions 5.2.7 and below suffer from command execution, privilege escalation, server-side request forgery, and remote SQL injection vulnerabilities.
Phishing is on the rise: Are you protected?
Phishing is on the rise as hackers are finding easier and less expensive ways to launch attacks. Every solution in our AVG Business product portfolio detects and protects against phishing.
Phishing is a security hack to trick you into providing usernames and passwords to your accounts. Usually sent as a legitimate-looking email from a company you may use or buy services from, a phishing hack will ask you to login to your account to verify some information.
The email may communicate that your account has been, or will be, closed down unless you act promptly. The email is actually not from a legitimate or trustworthy company. With one click, you’ll be directed to a fake website and any login or user information will be sent to the hacker.
The good news is every solution in our AVG Business product portfolio detects and protects against phishing. Educating your business clients is the next step in a good defense.
AVG Business portfolio detects and protects
Our LinkScanner® is a security feature in every AVG Business product, including AVG AntiVirus and Internet Security Business Editions, AVG CloudCare and AVG Managed Workplace. To protect against phishing, the feature checks web pages in real-time before they open in browsers, displaying immediate alerts to help eliminate click throughs to compromised web pages.
The advanced technology powering this feature takes a multi-layer approach to identify and stop “phishy” emails:
- First, we scan the web continuously to identify “phishy” emails and websites linking to these.
- Next, we analyze those websites and also compare them with legitimate sites. In this process, we identify unique characteristics in the way web pages are coded to identify if it is a phishing site – similar to taking a “fingerprint” of the phishing website.
- Then those “fingerprints” are automatically added to your AVG software’s virus database so it can identify this phishing site and other sites that may use the same or similar code.
- AVG monitors any web links that you click and stops phishing pages from loading and displays a message alerting you to the danger.
Please share this education about phishing with your business clients and continue to put advanced detection and protection in place with AVG Business solutions.
Google Patches Two High-Severity Flaws in Chrome
Chrome 51.0.2704.79 for Windows, Mac, and Linux was released Wednesday and patched 15 vulnerabilities, including two high-severity flaws eligible for bounties
Beware online fraudsters jumping on the back of recent data breaches
The Internet Crime Complaint Center (IC3) has issued a public service announcement warning people about online fraudsters, who are attempting to exploit a recent spate of data breaches that have only just come to light.
The post Beware online fraudsters jumping on the back of recent data breaches appeared first on We Live Security.
Lenovo Tells Users to Uninstall Vulnerable Updater
An advisory from PC maker Lenovo recommends that users uninstall Lenovo Accelerator Application, which includes components rife with security vulnerabilities.
Debian Security Advisory 3593-1
Debian Linux Security Advisory 3593-1 – Several vulnerabilities were discovered in libxml2, a library providing support to read, modify and write XML and HTML files. A remote attacker could provide a specially crafted XML or HTML file that, when processed by an application using libxml2, would cause a denial-of-service against the application, or potentially the execution of arbitrary code with the privileges of the user running the application.
Red Hat Security Advisory 2016-1201-01
Red Hat Security Advisory 2016-1201-01 – Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 51.0.2704.79. Security Fix: Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Chromium to crash, execute arbitrary code, or disclose sensitive information when visited by the victim.