Tag Archives: security

Over 85,000 HP Printers Found to be Publicly Accessible Via the Internet


January 29, 2013 By
The Vigilant Application Owner

Softpedia – (International) Over 85,000 HP printers found to be publicly accessible via the Internet. A software researcher discovered that over 85,000 printers made by HP are available via a focused Google search, allowing remote access. Source: http://news.softpedia.com/news/Over-85-000-HP-Printers-Found-to-Be-Publicly-Accessible-Via-the-Internet-324836.shtml

Continue reading...

SCADA Password Cracking Code Available


January 25, 2013 By
The Vigilant Application Owner

Help Net Security – (International) SCADA password cracking code available. The Industrial Control Systems Cyber Emergency Response Team (ICSCERT) warned that a proof-of-concept exploit code was released that can brute force passwords to programmable logic controllers (PLC) before the vulnerability could be addressed by the manufacturer, Siemens. Source: http://www.net-security.org/secworld.php?id=14303

Continue reading...

GitHub Forced To Diable Search After Exposing Private SSH Keys


By
The Vigilant Application Owner

Softpedia – (International) GitHub forced to disable search after exposing private SSH keys. GitHub disabled its new search function after it returned results that included private Secure Shell (SSH) keys used by several Web sites. Source: http://news.softpedia.com/news/GitHub-Forced-to-Disable-Search-After-Exposing-Private-SSH-Keys-324200.shtml

Continue reading...

Web Server Hackers Install Rogue Apache Modules And SSH Backdoors, Researchers Say


January 24, 2013 By
The Vigilant Application Owner

IDG News Service – (International) Web server hackers install rogue Apache modules and SSH backdoors, researchers say. Researchers from Securi reported that a group of attackers using rogue Apache modules has been replacing Secure Shell (SSH) binary files in compromised servers with backdoored versions that collect user information and passwords from incoming and outgoing SSH […]

Continue reading...

Security Flaws Leave Networked Printers Open To Attack


January 23, 2013 By
The Vigilant Application Owner

InformationWeek – (International) Security flaws leave networked printers open to attack. A security researcher discovered flaws in Hewlitt-Packard’s JetDirect printer networking software which can be used to bypass security controls, disable printers, or reprint previous documents. Source: http://www.informationweek.com/security/vulnerabilities/security-flaws-leave-networked-printers/240146805

Continue reading...

Critical Security Vulnerability At Amazon Fixed


January 18, 2013 By
The Vigilant Application Owner

The H – (International) Critical security vulnerability at Amazon fixed. The Amazon Web site has fixed a cross-site scripting vulnerability which could have been used to inject malicious JavaScript code which allows 3rd-party access to various elements of a user’s account, including the shopping cart, history, name, and email address associated with the account. Source: […]

Continue reading...

Oracle Releases 86 Patches In Its January Critical Patch Update


January 16, 2013 By
The Vigilant Application Owner

Threatpost – (International) Oracle releases 86 patches in its January Critical Patch Update. Oracle released its quarterly Critical Patch Update, which addresses 86 security vulnerabilities in various Oracle products. Source: http://threatpost.com/en_us/blogs/oracle-releases-86-patches-its-january-critical-patch-update-011613

Continue reading...

Cybersleuths Uncover 5-year Spy Operation Targeting Government, Others


January 14, 2013 By
The Vigilant Application Owner

Wired.com – (International) Cybersleuths uncover 5-year spy operation targeting governments, others. Kaspersky Lab researchers uncovered a sophisticated, long-running cyber espionage campaign targeting governments, energy companies, embassies, and aerospace companies dubbed ‘Red October.’ The malware used is customized to individual targets, uses a complex command and control system, and utilizes spear phishing attacks to infect victims. […]

Continue reading...

Oracle Ships Critical Security Update For Java


January 13, 2013 By
The Vigilant Application Owner

Krebs on Security – (International) Oracle ships critical security update for Java. Oracle released an update for Java to fix the recent critical vulnerability that allowed malware to exploit computers running the program. The update also increases the default security settings for running Java applications from ‘medium’ to ‘high.’ Source: http://krebsonsecurity.com/2013/01/oracle-ships-critical-security-update-for-java/

Continue reading...