Oracle E-Business Suite version 12.2 suffers from a cross site scripting vulnerability.
Monthly Archives: August 2016
OSX/Keydnap spreads via signed Transmission application
During the last hours, OSX/Keydnap was distributed on a trusted website, which turned out to be “something else”. It spread via a recompiled version of the otherwise legitimate open source BitTorrent client application Transmission and distributed on their official website.
The post OSX/Keydnap spreads via signed Transmission application appeared first on WeLiveSecurity.
Chainfire's SuHide — Now You Can Hide Your Android Root Status On Per-App Basis
Famous Android developer Chainfire released an experimental hack with a new app, called “Suhide,” that allows users to hide the root status of their rooted Android devices on an app-by-app basis.
Rooting your Android device can bring a lot of benefits by giving you access to a wide variety of apps and deeper access to the Android system…But at what cost?
One of the major drawbacks of
Oracle E-Business Suite 12.2 Cross Site Scripting
Oracle E-Business Suite version 12.2 suffers from a cross site scripting vulnerability.
Two US State Election Systems Hacked to Steal Voter Databases — FBI Warns
A group of unknown hackers or an individual hacker may have breached voter registration databases for election systems in at least two US states, according to the FBI, who found evidence during an investigation this month.
Although any intrusion in the state voting system has not been reported, the FBI is currently investigating the cyberattacks on the official websites for voter registration
Thinking of switching your passwords to biometric systems? Good luck getting employees on board.
Fingerprint sensors are one of the many biometric identification methods that businesses are starting to use instead of traditional number-and-letter passwords. Are you ready to make the switch?
Angler by Lurk: Why the infamous cybercriminal group that stole millions was renting out its most powerful tool
At the beginning of the summer, Kaspersky Lab assisted in the arrest of suspects that were part of the Lurk gang, which allegedly stole more than 45 million dollars from a number of companies and banks in Russia.
Moxa SoftCMS CGI Program SQL Injection (CVE-2016-5792)
A SQL injection vulnerability has been reported in Moxa SoftCMS. The vulnerability is due to insufficient input validation on user supplied input. A remote attacker can exploit this vulnerability by providing a crafted input to the product. Successful exploitation would allow the attacker to perform SQL injection and possibly code execution.
Phishing URL Attack Attempt
Phishing URL attack attempt to acquire sensitive information such as usernames, passwords, and credit card details by masquerading as a trustworthy entity. The attacker uses embedded redirection links in order to gain the victim’s account information.
Avira Free Antivirus DLL Hijacking
Avira’s free antivirus package installers suffer from a dll hijacking vulnerability.