New Proof of Concept for the 2 week old Drupal vulnerability The Drupal Security team says that you should assume every Drupal website not patched on October 15th was infected. A SQL injection attack went around the Internet in an automated fashion. And the details are: In this code we see, that Drupal gives the … Read more
The conclusion of The July 2014 Insurance Industry Working Session: from the USDA.gov page Ok, I admit the conference did not talk about Smokey the Bear for cyberspace very much if at all. Specifically: “The Federal government may be in the best position to drive awareness and education about cyber risk and, by extension, … Read more
this is interesting: https://shellshocker.net/ Is an interesting site… You can enter your domain name and they will tell you if you have the Bash Shellcode vulnerability. At this time they found 1767 vulnerable hosts: 107760 Total tests to date. 1767 Total vulnerable hosts found. It is also called the Shellshock vulnerability. As I mentioned in previous posts: … Read more
