Honeywell Point Of Sale(POS) systems – like the Dolphin Scanners: The components of Honeywell’s software (OLE for Retail POS systems to be exact) seem to be susceptible to buffer overflow attacks. Threatpost blogpost Relevant paragraph: “The Honeywell OPOS Suite provides a standard programming interface that allows POS hardware to be easily integrated into retail POS … Read more
A screenshot from the following Youtube video(below) – by Lenardo Ve: This is an instructive video how DNS can be hacked and attacked. And if successful it could cause an attackers proxy system to embed itself into the web traffic of the company. Notice that the evil proxy server that placed itself … Read more
If it is not plain to everyone, here is some evidence: Sony Picture’s Scott Rudin exec emails: http://deadline.com/2014/12/scott-rudin-apology-sony-hacking-barack-obama-1201320321/ His racially insensitive emails were posted after the network and all servers were hacked. even after several years go by the emails have surfaced. SEP = Security Equals Privacy This scenario can be repeated: Google and Twitter … Read more
New fixvirus Post at http://www.fixvirus.com/why-perform-your-own-vulnerability-analysis/
There is a new POODLE vulnerability and test at Qualys SSL labs) https://www.ssllabs.com/ssltest/ POODLE (Padding Oracle On Downgraded Legacy) The problem is that your encryption stream may be downgraded to a legacy (i.e. can be cracked) standard. TLS 1.2 and higher needs to be kept as the known secure standard. Go click on ssllabs.com … Read more