elasticsearch vulnerability helping cause Denial of Service attacks
securelist has the story elasticsearch is an open source Cloud software running on a lot of cloud companies. As it is a search and analytics engine. But apparently it has…
Bromium says IE browser 2x more attacks than others
Bromium report has the information plus a lot more. Two items of note in the report: 1. the type of exploits occurring in IE, Java and Flash The security system…
2Q report by IBM X-Force, 23% of websites vulnerable.
CSRF or Cross Site Request forgery is the highest likely method of attack Broken Authentication is second And cross-site scripting(XSS) is third SQL Injection as well as security misconfigurations are…
Apple beats estimates, what is this backdoor in iOS?
today Apple beat estimates: Deadline.com with 35.2 mil iPhones sold threatpost has the info about a “stream of data” on an iPhone It looks like Jonathan Zdziarksi, a forensic scientist…
Another CC breach at Goodwill industries or not?
KrebsonSecurity has a good rundown on what we know so far. Basically there has been a breach, some CC companies are noticing bad traffic, and the US secret service is…