Tag: Feedly

The ‘Automated Public/Private Intel Sharing System’ That Enables CISA http://ift.tt/2clY67W News via Packet Storm http://ift.tt/1Fpvz7L September 13, 2016 at 06:10PM

Microsoft Patches 47 Vulnerabilities with September Patch Tuesday http://ift.tt/2cL9Hhi Microsoft patched 47 vulnerabilities as part of 14 security bulletins, seven critical, with its monthly Patch Tuesday updates today. The company is warning users that if left unpatched, 10 of the issues can lead to remote execution. Related Posts September 13, 2016 , 1:51 pm September…

6.6 million plaintext passwords exposed as site gets hacked to the bone – Ars Technica http://ift.tt/2ckgjb4 Ars Technica 6.6 million plaintext passwords exposed as site gets hacked to the bone Ars Technica Plaintext passwords, usernames, e-mail addresses, and a wealth of other personal information has been published for more than 2.2 million people who created…

DualToy: New Windows Trojan Sideloads Risky Apps to Android and iOS Devices http://ift.tt/2csQ4tC Over the past two years, we’ve observed many cases of Microsoft Windows and Apple iOS malware designed to attack mobile devices. This attack vector is increasingly popular with malicious actors as almost everyone on the planet carries at least one mobile device…

Two Israeli teenagers have been arrested for allegedly running a hacking service – TechRadar http://ift.tt/2cFEgGx Two Israeli teenagers have been arrested, accused of running an online service which performed distributed denial of service (DDoS) attacks on websites for paying customers. Called vDOS, the website went offline not long before the arrests were made. Following their…

Thousands of infected FTP servers net attackers €77K in cryptocurrency http://ift.tt/2c5ju0d Enlarge (credit: Pander) Attackers are draining the CPU and power resources of more than 5,000 file transfer protocol servers by infecting them with malware that surreptitiously mints the relatively new crypto currency called Monero, researchers said. A notable percentage of the 5,137 infected servers…

GovRAT 2.0 continues to target US companies and Government http://ift.tt/2crW4mj Vxers developed a new version of GovRAT, called GovRAT, that has been used to target government and many other organizations in the US. GovRAT is an old cyberespionage tool, it has been in the wild since 2014 and it was used by various threat actors…

PunkSPIDER – A Web Vulnerability Search Engine http://ift.tt/2c7q5fF PunkSPIDER is a global-reaching web vulnerability search engine aimed at web applications. The goal is to allow the user to determine vulnerabilities in websites across the Internet quickly, easily, and intuitively. Please use PunkSPIDER responsibly. In simple terms, that means the authors have created a security scanner…

Dropbox apologies for clunky administrator account access on Macs http://ift.tt/2cs4mOg Dropbox has denied accusations that its Mac client stealing passwords. Developer Phil Stokes has accused the cloud locker company of sucking up administrator passwords on machines in a bid to reduced the number of permission prompts. Stokes says in analysis that Dropbox’s Mac client abused…

NetSPI/PowerUpSQL http://ift.tt/2cASJoF NetSPI/PowerUpSQL: The PowerUpSQL module includes functions that support SQL Server discovery, auditing for common weak configurations, and privilege escalation on scale. It is intended to be used during internal penetration tests and red team engagements. However, PowerUpSQL also includes many functions that could be used by administrators to quickly inventory the SQL Servers…