Monthly Archives: December 2012

New Android Trojan Capable Of Lauching DDoS Attacks, Sending SMSs


December 28, 2012 By
The Vigilant Application Owner

Softpedia – (International) New Android trojan capable of launching DDoS attacks, sending SMSs. Researchers from Doctor Web identified a new Android trojan dubbed “Android.DDoS.1.origin” that can execute malicious tasks such as using the infected device for distributed denial of service (DDoS) attacks and sending out SMS messages. Source: http://news.softpedia.com/news/New-Android-Trojan-Capable-of-Launching-DDOS-Attacks-Sending-SMSs-317524.shtml

Continue reading...

Flaw In Facebook Allowed Attachers To Record Video Of User And Post It On The Timeline


By
The Vigilant Application Owner

Softpedia – (International) Flaw in Facebook allowed attackers to record video of user and post it on the timeline. Researchers from XYSEC Labs identified a cross site request forgery (CSRF) vulnerability in Facebook that could allow an attacker to record video from the victim’s webcam or other source and then post it to the victim’s […]

Continue reading...

Researcher Finds XSS Vulnerabilities In cPanel And WHM 11.34


December 27, 2012 By
The Vigilant Application Owner

Softpedia – (International) Researcher finds XSS vulnerabilities in cPanel and WHM 11.34. A researcher released a video where he identified cross-site scripting (XSS) vulnerabilities in the popular cPanel and WHM 11.34 Web hosting control panel. Source: http://news.softpedia.com/news/Researcher-Finds-XSS-Vulnerabilities-in-cPanel-WHM-11-34-Video-317356.shtml

Continue reading...

Drupal 7.18 and 6.28 Released To Address Security Vulnerabilities


December 20, 2012 By
The Vigilant Application Owner

Softpedia – (International) Drupal 7.18 and 6.28 released to address security vulnerabilities. Drupal 7.18 and 6.27 were released to fix three remotely exploitable vulnerabilities, all rated moderately critical. – 8 – Source: http://news.softpedia.com/news/Drupal-7-18-and-6-28-Released-to-Address-Security-Vulnerabilities-316281.shtml

Continue reading...

Apache Malware Targeting Online Banking


December 19, 2012 By
The Vigilant Application Owner

Help Net Security – (International) Apache malware targeting online banking. ESET detected and analyzed a malicious Apache module dubbed “Linux/Chapro.A” and discovered that the popular Web server is being used to unknowingly inject malicious content into Web pages designed to steal customers’ banking information. Source: http://www.net-security.org/malware_news.php?id=2364

Continue reading...

Hackers Breached Heating System Via Industrial Control System Backdoor


December 13, 2012 By
The Vigilant Application Owner

Wired.com – (New Jersey; International) Hackers breached heating system via industrial control system backdoor. Hackers broke into the industrial control system (ICS) of a New Jersey air conditioning company earlier this year, using a backdoor vulnerability in the system, according to a FBI memo made public the week of December 10. The intruders first breached […]

Continue reading...

Your Opinion Matters: Take Our 2013 Open Source Development Survey (plus, you could win Jason’s brand new Apple Workstation)


December 12, 2012 By
Emily Blades

We want to hear about your experiences and challenges using open source software in development. Please take 10 minutes and share your thoughts. In return, you could win Jason’s brand new Apple workstation including a 15″ MacBook Pro with Retina display,  a 27″ Thunderbolt display, an Apple Magic Mouse and an Apple Wireless Keyboard. We’ve […]

Continue reading...

Samsung Smart TV Bug Allows Remote Access, Root Priviledges


By
The Vigilant Application Owner

Threatpost – (International) Samsung smart TV bug allows remote access, root privileges. Some specific models of Samsung TVs that have Wi-Fi and other advanced capabilities have a flaw that enables an attacker to take a variety of actions on the TV, including accessing potentially sensitive data, remote files and information, the drive image, and eventually […]

Continue reading...

Stored XSS That Allowed Hackers To Hijack Tumblr Blogs Still Unfixed


December 11, 2012 By
The Vigilant Application Owner

Softpedia – (International) Stored XSS that allowed hackers to hijack Tumblr blogs still unfixed. The stored cross-site scripting (XSS) vulnerability that allowed hackers to hijack Tumblr blogs remains unfixed, according to a security researcher. He explains that this vulnerability could be utilized for numerous cybercriminal operations. The stored XSS could be used for phishing, malware […]

Continue reading...