Tuesday the patch was released: Here is where it started CVE-2015-1635 Description: HTTP.sys in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 allows remote attackers to execute arbitrary code via crafted HTTP requests, aka “HTTP.sys Remote Code Execution Vulnerability.” the vulnerability was created 20150217 MS:MS15-034 http://technet.microsoft.com/security/bulletin/MS15-034 … Read more
Do you wonder what makes these guys who attack us every day tick? the McAfee Article on the “growth” industry http://www.networkworld.com/article/2911167/security0/cyber-extortion-a-growth-industry.html Personally I have bumped into a few instances of this phenomena(extortion and cryptolocker): As well as phone extortion artists After infecting the computer they have you call them and then … Read more
The question should be “When will I get Hacked?” Internet Storm center went to Threat level Yellow today: Internet Storm Center threat status: (this morning on 17th threat level went back to Green) – threat Activity died down fortunately and enough of us are patching. The reason it went yellow for a day is … Read more
The AC5300 Ultra WiFi router looks “Ultra” and new. Looks interesting right? lots of new specs and capabilities. Now let’s check out security researcher at /dev/TTYS0 So, while Dlink was busy with their marketing campaign and trying to sell more routers with flashy products and images (after a certain engineering effort), the security researcher … Read more
ISIL is defacing web Sites using WordPress vulnerabilities http://www.ic3.gov/media/2015/150407-1.aspx ic3=Internet Crime Complaint Center recommendation is to update your WordPress website as much as possible when necessary: check the following sites: http://www.securityfocus.com/bid, http://cve.mitre.org/index.html, https://www.us-cert.gov/ for vulnerabilities and update your site as needed. In practicality it means updating your WordPress site as the plugins are updated … Read more