Unfortunately another flaw in software for which we expect to have _none_, at least in security software written in ZDNet¹ post: This just in 7/28/16 story by Cnet – http://www.cnet.com/news/big-security-bug-fixed-by-lastpass-password-manager/ Looks like Lastpass fixed another bug quickly… Tavis Ormandy (a Google Project Zero hacker) used a couple of tweets to point out security flaws in Lastpass LastPass is … Read more
What does this Headline mean to you? From the Talos Intelligence website¹. The text may be a bit hard to read, so here it is: Intel HD Graphics Windows Kernel Driver (igdkmd64) Code Execution Vulnerability Vulnerability: CVE-2016-5647 Summary: A vulnerability exists in the communication functionality of Intel Graphics Kernel Mode Driver. A specially crafted message can cause … Read more
Ok it happened as some predicted last year: A botnet was found¹ (a collection of computers or in this case devices that are controlled by another computer) controlling a number of IoT (Internet of Things). These IoT devices were then told to attack a website thus causing a DDoS (Dynamic Denial of Service). The website … Read more
Why does it seem that we are always defending? Seemingly the same thing every day – every month, as the patches come out IT departments must patch consistently and without fail. Because if not what happens? Such as from Fortinet’s¹ analysis 10% of all NFS servers in the world are vulnerable to a specific attack. … Read more
Of the Wired story¹ about FBI agent using Ukrainian hacker Popov to do their bidding there are many storylines: A criminal hacker wanted to turn and become legitimate – making money in the USA. FBI abused the hacker from Day1 for 3 years The FBI hierarchy did not know what they really had, but a … Read more