Damballa goes deep with Furtim and SFG malware to uncover new details about how the two are connected, distributed and who their targets are.
Tag Archives: Web Security
Two Million Passwords Breached in Ubuntu Hack
Canonical’s CEO claims a SQL injection vulnerability led to the hack of Ubuntu’s Two million user strong forums.
Juniper Crypto Bug Let Attackers Eavesdrop on Router, Switch Traffic
Juniper patched a crypto security bug that could allow hackers to access the company’s routers, switches and security devices and eavesdrop on sensitive communications.
Scan Reveals Hydropower Plants, Other Critical Infrastructure Exposed Online
An Internet scan of the IPv4 address space uncovered more than 100 critical facilities exposed to the public Internet, including hydropower plants in Germany and Italy.
Digital Rights Advocates Call for Investigation Around W3C’s DRM Extension
Digital rights advocates are again pleading with the World Wide Web Consortium (W3C) to reconsider standardizing DRM in Encrypted Media Extensions, a draft specification that would ultimately feed into HTML 5.
Drupal Patches Remote Code Execution Vulnerabilities in Three Modules
Developers with the open source content management framework Drupal patched a series of highly critical remote code execution bugs in three separate modules today. If exploited, the bugs could let an attacker take over any site running the modules.
Windows Print Spooler Flaws Lead to Code Execution
Microsoft today released six critical bulletins as part of its July Patch Tuesday update, including patches for remote code execution flaws in Windows Print Spooler components.
xDedic Hacked Server Market Resurfaces on Tor Domain
The xDedic market has resurfaced, this time on a Tor network domain and with the inclusion of a new enrollment fee.
IoT Medical Devices: A Prescription for Disaster
Hospitals are on the IoT device vanguard revolutionizing patient care, but they are also huge targets for hackers targeting unsecure IoT medical devices.
Dropping Elephant APT Targets Old Windows Flaws
Dropping Elephant, an advanced persistent threat group, is using old exploits to target unpatched version of Windows in highly effective cyber espionage campaign.