securelist has the story elasticsearch is an open source Cloud software running on a lot of cloud companies. As it is a search and analytics engine. But apparently it has a vulnerability which hackers are abusing. “ including a bot implementing some extraordinary DNS amplification DDoS functionality. Operators of these bots are currently active, … Read more
Be careful on the advertisement you click on. Katie Matusik is a Gymnast (took 3rd place in 2012 NCAA National Gymnastics) If you search for Kaite Matusik on Bing you will see the following: If someone clicks on it: then the following site comes up: It is an extortion Scheme and is difficult to … Read more
Cari.net has the details They even did a scan to the Internet Total Hosts responding to web requests on port 49152: 9,867,259 Vulnerable Systems: 31,964 So not all systems responding on port 49152 are Supermicro products. they also have to return something to a “get /{SBlock” Once you know you have a problem, … Read more
this blog is an interesting tips and tricks site: http://tipstrickshack.blogspot.com/ (also explains hackers terminology a bit) The author describes several hacks on vulnerabilities within wordpress 3.51 (today latest is 3.8). So if you never upgrade your software (wordpress) then it will get hacked that is how it is, one always needs to be aware of … Read more
Many vendors have put out statements for OpenSSL vulnerability (CVE-2014-0160): This is a vulnerability in the encryption technology (OpenSSL) on websites and other systems. If you cannot safely access websites with encryption technologies it is a bad day on the Internet isc has a full list – list is increasing: But most interesting (to me) … Read more