Juniper Networks has removed “unauthorized code” capable of decrypting VPN traffic that it found in ScreenOS, which runs many of its enterprise-grade NetScreen firewalls.
Tag Archives: Web Security
Facebook, Researcher Spar Over Instagram Vulnerabilities
Facebook is at odds with a security researcher over a number of Instagram vulnerabilities that allowed the researcher to access SSL and other private keys, as well as user and employee data.
Critical Flaws Found in Network Management Systems
Rapid7 has reported and disclosed a half-dozen XSS and SQL injection flaws in popular network management systems, all of which can be reached via SNMP.
Attacks Ramp Up Against Joomla Zero Day
Researchers at Sucuri said attacks against a zero-day vulnerability in Joomla, which has been patched, have accelerated since the weekend.
Twitter Warns Some users of Nation-State Attacks
Some Twitter users are being warned that their accounts may be involved in state-sponsored hacks.
Banking Malware Moving Over Facebook Hosted in Cloud
Zscaler has uncovered new Spy Banker campaigns moving over Facebook where the banking malware is hosted on a Google Cloud Server.
Internet Root Name Servers Survive Unusual DDoS Attack
An unusual DDoS amplification attack was carried out 10 days ago against many of the Internet’s 13 root name servers, the authoritative servers used to resolve IP addresses.
Google Updates Chrome, Extends Safe Browsing to Chrome for Android
Google joined the Patch Tuesday parade with a Chrome update that patches seven vulnerabilities in the browser. It also announced it was extending Safe Browsing protection to Chrome for Android.
Massive Adobe Flash Update Patches 79 Vulnerabilities
Adobe’s monthly Flash Player update patches 79 code execution vulnerabilities, including 56 use-after-free flaws.
Bitcoin Extortionist Copycats on the Rise, Experts Say
Experts believe that the success tied to a recent spate of DDoS for hire groups may be because many are copycat collectives operating with a shorter lifespan.