security alert
163 views | +0 today
Follow
Your new post is loading...
Your new post is loading...
Scooped by security informer
Scoop.it!

Un chercheur montre les failles de Windows 8 durant la conférence Black Hat - Actualités CSO Hacking - Reseaux et Telecoms

Un chercheur montre les failles de Windows 8 durant la conférence Black Hat - Actualités CSO Hacking - Reseaux et Telecoms | security alert | Scoop.it
Un chercheur montre les failles de Windows 8 durant la conférence Black Hat - CSO Hacking - Un spécialiste de la sécurité chez Trend Micro a dressé la liste...
more...
No comment yet.
Scooped by security informer
Scoop.it!

Oracle met à disposition 14 correctifs pour JAVA - Actualités CSO Alerte - Reseaux et Telecoms

Oracle met à disposition 14 correctifs pour JAVA - Actualités CSO Alerte - Reseaux et Telecoms | security alert | Scoop.it
Oracle met à disposition 14 correctifs pour JAVA - CSO Alerte - Une douzaine de failles affectant des logiciels d'Oracle peuvent...
more...
No comment yet.
Scooped by security informer
Scoop.it!

Potential Malware Threats Hit Chrome

Potential Malware Threats Hit Chrome | security alert | Scoop.it
Most of you are not surprised to hear that malware attacks can hit any browser, Internet Explorer is not necessarily weaker than other browsers in the secu...
more...
No comment yet.
Scooped by security informer
Scoop.it!

Web Services Single Sign-On Contain Big Flaws - Dark Reading

Web Services Single Sign-On Contain Big Flaws - Dark Reading | security alert | Scoop.it
Microsoft Research report shows how risky single sign-on can be without solid integration and better support from Web service providers like Google and Facebook...
more...
No comment yet.
Scooped by security informer
Scoop.it!

Unsure about your DNS security? Use a free, comprehensive vulnerability test

Unsure about your DNS security?  Use a free, comprehensive vulnerability test | security alert | Scoop.it
This week, I’m once again delaying the next installment in the business continuity event management series to discuss what I believe is one of the most valuable free solutions for identifying DNS risk—GRC’s DNS Nameserver Spoofability Test.  Since...
more...
No comment yet.
Scooped by security informer
Scoop.it!

Why .htaccess files should not be used for security restrictions | Acunetix Web Application Security Blog

Why .htaccess files should not be used for security restrictions | Acunetix Web Application Security Blog | security alert | Scoop.it
In this article we will explain why it is not recommended to use htaccess files to protect sensitive information and suggest alternatives...
more...
No comment yet.
Scooped by security informer
Scoop.it!

$45k stolen in phone porting scam

$45k stolen in phone porting scam | security alert | Scoop.it
Scammers steal identity, redirect banking verification codes.
more...
No comment yet.
Scooped by security informer
Scoop.it!

Hash Table Vulnerability Enables Wide-Scale DDoS Attacks | SecurityWeek.Com

Hash Table Vulnerability Enables Wide-Scale DDoS Attacks | SecurityWeek.Com | security alert | Scoop.it
Hash Table Vulnerability: Several vendors are currently working to resolve a hash collision vulnerability, which if exploited can trigger a denial-of-service condition on multiple platforms.
more...
No comment yet.
Scooped by security informer
Scoop.it!

One-Fourth Of SSL Websites At Risk - Dark Reading

One-Fourth Of SSL Websites At Risk - Dark Reading | security alert | Scoop.it
Many sites haven't applied patches for well-known 'renegotiation' flaw...
more...
No comment yet.
Scooped by security informer
Scoop.it!

[MUST KNOW][SECURITY] New Attack Uses SSL/TLS Information Leak to Hijack HTTPS Sessions | threatpost

[MUST KNOW][SECURITY] New Attack Uses SSL/TLS Information Leak to Hijack HTTPS Sessions | threatpost | security alert | Scoop.it
Juliano Rizzo and Thai Duong, who developed the ASP.NET padding oracle attack and the BEAST SSL attack, have written a tool called CRIME that takes advantage of an information leak in SSL/TLS to hijack HTTPS sessions.
more...
No comment yet.
Scooped by security informer
Scoop.it!

Une vulnérabilité zero-day découverte dans Internet Explorer - Actualités CSO Hacking - Reseaux et Telecoms

Une vulnérabilité zero-day découverte dans Internet Explorer - Actualités CSO Hacking - Reseaux et Telecoms | security alert | Scoop.it
Une vulnérabilité zero-day découverte dans Internet Explorer - CSO Hacking - HD Moore, auteur du logiciel de pénétration Metasploit, invite...
more...
No comment yet.
Scooped by security informer
Scoop.it!

Une faille dans les bases de données Oracle expose les données - Actualités CSO Hacking - Reseaux et Telecoms

Une faille dans les bases de données Oracle expose les données - Actualités CSO Hacking - Reseaux et Telecoms | security alert | Scoop.it
Une faille dans les bases de données Oracle expose les données - CSO Hacking - Selon les experts, certaines bases de données d'Oracle présentent...
more...
No comment yet.
Scooped by security informer
Scoop.it!

The citizen developer: A security risk that can’t be ignored | TechRepublic

The citizen developer: A security risk that can’t be ignored | TechRepublic | security alert | Scoop.it
Businesses need to act to prevent corporate data being put at risk by the increasing number of non-programmers building their own apps.
more...
No comment yet.
Scooped by security informer
Scoop.it!

Microsoft Security Bulletin MS12-054 - Critical : Vulnerabilities in Windows Networking Components Could Allow Remote Code Execution (2733594)

This security update resolves four privately reported vulnerabilities in Microsoft Windows.
more...
No comment yet.
Scooped by security informer
Scoop.it!

French Central Bank password was 123456 (really)

French Central Bank password was 123456 (really) | security alert | Scoop.it
A French citizen has unintentionally breached the security of the French central bank (Banque de France) over the phone and was freed by French authorities after being accused of “hacking” the central bank’s and triggering a 48-hours shut down of ...

 

http://tempsreel.nouvelobs.com/societe/20120920.FAP8656/entre-par-hasard-sur-un-serveur-de-la-banque-de-france-l-internaute-est-relaxe.html

http://www.cnis-mag.com/la-banque-de-france-n%E2%80%99est-pas-un-moulin%E2%80%A6-ou-presque-pas.html

 

 

more...
No comment yet.
Scooped by security informer
Scoop.it!

New DNS exploit now in the wild and having a blast

New DNS exploit now in the wild and having a blast | security alert | Scoop.it
A new hack designed to exploit a weakness in the DNS protocol is out, just …...
more...
No comment yet.
Scooped by security informer
Scoop.it!

Windows XML Core Services Exploit Attacked In The Wild - CVE-2012-1889

Windows XML Core Services Exploit Attacked In The Wild - CVE-2012-1889 | security alert | Scoop.it
Oh look, another serious flaw in Windows - and this one is really bad because it can be exploited directly in Internet Explorer.
more...
No comment yet.
Scooped by security informer
Scoop.it!

Massive Online Attack Exposes Over 1 Million Accounts | Acunetix Web Application Security Blog

Massive Online Attack Exposes Over 1 Million Accounts | Acunetix Web Application Security Blog | security alert | Scoop.it
A recent online attack exposes SQL Injection vulnerabilities to expose sensitive information from over a million accounts.
more...
No comment yet.
Scooped by security informer
Scoop.it!

Black Hole Exploit - A Business Savvy Cyber Gang Driving a Massive Wave of Fraud | SecurityWeek.Com

Black Hole Exploit - A Business Savvy Cyber Gang Driving a Massive Wave of Fraud | SecurityWeek.Com | security alert | Scoop.it
Ironically, the work Paunch is doing on the Black Hole Exploit Kit probably isn’t technically illegal in and of itself, as he’s simply writing software that others then buy or rent to actually hack victims’ computers and steal from them.
more...
No comment yet.
Scooped by security informer
Scoop.it!

[MUSTKNOW][SECURITY] TLS / SSLV3 Man in the Middle Attack : IHTeam Security Blog

[MUSTKNOW][SECURITY] TLS / SSLV3 Man in the Middle Attack : IHTeam Security Blog | security alert | Scoop.it
more...
No comment yet.
Scooped by security informer
Scoop.it!

[MUSTKNOW][SECURITY] Flawed EMV Chip-and-PIN Protocol Paves Way To Fraudulent ATM and POS Transactions | threatpost

[MUSTKNOW][SECURITY] Flawed EMV Chip-and-PIN Protocol Paves Way To Fraudulent ATM and POS Transactions | threatpost | security alert | Scoop.it
New research from Cambridge University exposes vulnerabilities in the EMV protocol governing chip-and-PIN implementations in ATMs, point-of-sale terminals and other payment terminals.

 

RELATED http://www.theregister.co.uk/2012/09/13/chip_and_pin_security_flaw_research/

 

more...
No comment yet.