Garwarner Blog post reveals some details of various posts on the Internet that discuss the paper written by Google and other University of San Diego residents Here is the Abstract: “Online accounts are inherently valuable resources—both for the data they contain and the reputation they accrue over time. Unsurprisingly, this value drives criminals to steal, … Read more
This router has a big security hole: Integrity Labs says there is a guest wifi Zero-day exploit, this means that an unportected (without a password) wifi zone can be attacked and the machine can be taken over by the hacker. If you have a Belkin N750 you should consider replacing it ASAP. Believe … Read more
I say “again” because we have had BIOS malware before the famous CIH (Chernobyl) virus from 1998. Sophos recount And the last time the Chernobyl virus activated (April 26th) it caused $250mil dollars of damage in 1999 for South Korea alone. Even Mac’s can have BIOS infections as from Trendmicro Blog post Intel and MITRE … Read more
New Proof of Concept for the 2 week old Drupal vulnerability The Drupal Security team says that you should assume every Drupal website not patched on October 15th was infected. A SQL injection attack went around the Internet in an automated fashion. And the details are: In this code we see, that Drupal gives the … Read more
this is interesting: https://shellshocker.net/ Is an interesting site… You can enter your domain name and they will tell you if you have the Bash Shellcode vulnerability. At this time they found 1767 vulnerable hosts: 107760 Total tests to date. 1767 Total vulnerable hosts found. It is also called the Shellshock vulnerability. As I mentioned in previous posts: … Read more