|
|
|
30
Security researcher Krzysztof Katowicz-Kowalewski has identified a denial-of-service vulnerability affecting the latest version of WordPress. The vulnerability has been confirmed in WordPress 3.5.1, but other variants might also be impacted by the security hole. According to Secunia, the issue is catalogued as being... |
12 June 2013
04:28 GMT |
 |
|
Ruby on Rails 3.2.13, 3.1.12 and 2.3.18 have been released and, according to the developer, they contain some important security fixes. The security holes patched in these releases are a symbol denial-of-service (DOS) vulnerability in Active Record, a cross-site scripting (XSS) vulnerability in “sanitize_css&r... |
20 March 2013
04:41 GMT |
|
|
Drupal 7.20 has been released to fix a critical remotely-exploitable denial-of-service (DOS) vulnerability.
According to the developers, the latest update doesn’t include any new features or non-security-related fixes, but all users of Drupal 7.x are advised to install the latest version to prevent potential c... |
21 February 2013
04:23 GMT |
|
|
Webroot experts have found that cybercriminals are offering “phone ring flooding” services that are advertised as being capable of disrupting the competition’s phone lines. The service, which has been in operation for 3 years, is similar to SMS flooding and it’s guaranteed to work. It can be... |
14 February 2013
09:13 GMT |
|
|
The PostgreSQL Global Development Group has released PostgreSQL 9.2.3, 9.1.8, 9.0.12, 8.4.16, and 8.3.23. The release is considered a security update, so users are advised to apply it as soon as possible.
Besides some minor issues and a performance regression, the update addresses a denial-of-service (DOS) vulnerabi... |
7 February 2013
10:33 GMT |
|
|
MariaDB 5.5.29, 5.3.12, 5.2.14 and 5.1.67 have been released. The latest versions bring not only some new packages and a number of bug fixes, but they also address 5 security vulnerabilities.
The addressed vulnerabilities include a buffer overflow that could cause a server to crash and even allow an attacker to exec... |
1 February 2013
10:11 GMT |
|
|
The Apache Software Foundation reports that a number of three vulnerabilities – all catalogued as being of important severity – have been identified in Apache Tomcat, the open source web server and servlet container developed by the organization. The first vulnerability is a denial-of-service (DOS) bug t... |
5 December 2012
09:21 GMT |
|
|
Ruby 1.9.3-p327 has been released. The update brings a number of bug fixes, but it also addresses a serious hash-flooding denial-of-service (DOS) vulnerability which affects all older Ruby 1.9 versions and 2.0 variants prior to the 37575 trunk revision.
The security hole – identified by Jean-Philippe Aumasson,... |
10 November 2012
06:59 GMT |
|
|
Security researcher Chris C. Russo claims to have discovered a way to use Facebook’s chat module to launch denial-of-service (DOS) attack against any user, even if they’re not friends with the attacker.
Russo reveals that the attack is similar to the ones launched back in the day via MSN messenger. A lar... |
9 November 2012
09:20 GMT |
|
|
Researchers Andres Blanco and Matias Eissler from Core Security’s Core Impact team have uncovered a remotely exploitable vulnerability in Broadcom BCM4325 and BCM4329 wireless chipsets that could be leveraged by cybercriminals to launch a denial-of-service (DOS) attack.
According to advisories published by the... |
26 October 2012
05:36 GMT |
|
|
A researcher that goes by the name of Max claims to have identified a denial-of-service (DOS) vulnerability that affects fully updated versions of Windows 7 and possibly even Windows Vista. He reveals that a blue screen of death (BSOD) can be triggered by making a “very specific set of operating system calls.&... |
17 October 2012
09:41 GMT |
|
|
Asiasoft Online Pte Ltd, a renowned Massively Multiplayer Online Games (MMOGs) publisher, has contracted the solutions offered by application security firm Radware to protect its networks against threats from cyberspace.
Asiasoft – known for games such as MapleStory, Audition, GetAmped X, CABAL Online, Sudden ... |
17 October 2012
08:22 GMT |
|
|
On July 11, Cisco has published a number of four security advisories detailing multiple vulnerabilities that have been identified in TelePresence products, high-end devices and pieces of software designed for video conferences.
The TelePresence Recording Server, TelePresence Endpoint devices, TelePresence Manager an... |
13 July 2012
07:55 GMT |
|
|
VLC media player 2.0.2 has been released and the list of improvements is fairly long. From a security standpoint, one of the most important changes is the update made to the taglib library. In VLC 2.0.1, taglib contains a vulnerability (CVE-2012-2396) that could allow a remote attacker to cause a denial-of-serv... |
29 June 2012
07:29 GMT |
|
|
Georgian security researcher Ucha Gobejishvili has identified a memory corruption vulnerability in Firefox 13, the latest variant of Mozilla’s popular web browser.
To demonstrate his findings, the expert has made available a working proof-of-concept, along with a video to show how it works.
Gobejishvili told ... |
14 June 2012
10:51 GMT |
|
|
Barry Shteiman, a principal security engineer at Imperva, the owner of the Sectorix blog, and a self-proclaimed “nerd” has released a Python-based web server denial-of-service (DOS) tool called HULK (Http Unbearable Load King).
“For a while now, I have been playing with some of the more exotic tool... |
19 May 2012
06:21 GMT |
|
|
Bitcoin has released a new variant of the peer-to-peer digital currency system to address a denial-of-service (DOS) vulnerability that could have been leveraged by an attacker to isolate a victim’s node and create blockchain forks. The security hole, considered to be critical, has been found by Forrest Voight,... |
18 May 2012
09:35 GMT |
|
|
Panos Ipeirotis, a computer scientists working at New York University, learned the hard way that Google can be used to launch successful denial-of-service (DOS) attacks against sites with minimal effort.
On his personal blog Ipeirotis explained that it all started when he saw that Amazon Web Services was charging hi... |
26 April 2012
09:19 GMT |
|
|
Members of the infamous hacktivist collective TeaMp0isoN wanted to get back at UK’s foreign intelligence organization, MI6, for accusing innocent people of terrorism, so they dropped a 24 hour phone bomb on them. After the phone bombing stopped, TriCk, the leader of the group, called the MI6 offices in London a... |
11 April 2012
11:32 GMT |
|
|
Twenty years ago today, Microsoft officially launched Windows 3.1, which put Microsoft on a path to dominate the PC OS market. The platform brought along a wide range of changes when compared to its predecessor, Windows 3.0, including File Manager and Program Manager, and removed support for real mode. It also feat... |
6 April 2012
09:40 GMT |
|
|
Researchers Terry McCorke and Billy Rios identified a buffer overflow flaw in a number of components of the ABB WebWare Server applications that are currently being used in many legacy ABB products. However, because they’re approaching the end of their life cycle, the company revealed that no patches should be ... |
5 April 2012
07:46 GMT |
|
|
The official website of the extremist group known as the English Defence League (EDL) has been taken offline as a result of a massive denial-of-service (DOS) attack launched by hackers. In February 2011, TriCk, the leader of TeaMp0isoN defaced the British far-right organization’s website (englishdefenceleague.... |
5 March 2012
09:33 GMT |
|
|
Contrary to popular beliefs, bigger isn’t always necessary better. This is especially true when it comes to distributed denial of service (DDOS) attacks where instead of size, much more significant is the type of attack. This is just one of the conclusions published by Radware’s Emergency Response Team (... |
6 February 2012
10:49 GMT |
|
|
Ever since the Megaupload closure, hackers part of the Anonymous collective have been launching distributed denial of service (DDOS) attacks against government websites as a form of protest and now, the United States Computer Emergency Readiness Team (US-CERT) released an advisory to help site administrators deal wit... |
30 January 2012
04:39 GMT |
|
|
One of Australia’s largest online broking companies, E*Trade, was shut down during the holidays after being targeted by a denial of service (DoS) attack.
Mostly customers from overseas were affected, but Australians also had trouble accessing the websites on December 19 and 20 as a result of the thousands of s... |
4 January 2012
10:44 GMT |
|
|
On December 29th, 2011, Microsoft released an out-of-band security update for all Windows flavors starting with Windows XP, in an attempt to fix a number of vulnerabilities discovered in Microsoft .NET Framework 1.1 and later. Four security holes were patched with this update, one of which was rated critical. Whil... |
30 December 2011
03:11 GMT |
|
|
A couple of researchers showed how a common flaw in the implementation of the most popular web programming languages and applications can be used to force servers to use their CPU at full capacity for several minutes, causing a denial-of-service (DoS) condition. Julian Wälde and Alexander Klink made a presentat... |
29 December 2011
07:16 GMT |
|
|
A serious vulnerability that could allow a cybercriminal to issue a denial-of-service (DoS) attack on Ruby was found. The attack is possible with the aid of a specially crafted series of strings that collide their hash values. The deterministic hash function used to hash a string in the 1.8 series of Ruby, which mak... |
29 December 2011
04:17 GMT |
|
|
The latest variant of the popular open source instant messaging application, Pidgin 2.10.1, comes with several functionality bug fixes, but also with some important ones that resolve flaws which could have allowed an attacker to launch a malicious operation.
One of the issues, reported by Evgeny Boger, could have be... |
16 December 2011
04:47 GMT |
|
|
The hacker collective turned their anger against some websites belonging to the Muslim Brotherhood, one of the oldest and largest Islamist parties in Egypt.
According to The Hacker News, four of their main sites were taken down after the hackers used servers from Germany, France, Slovakia and the US to launch denial... |
14 November 2011
08:35 GMT |
|
|
Almost a quarter of all cyber masterminds prefer to use DoS or DDoS attacks, while 19% rely on SQL injections to complete their evil missions.After doing some digging on a popular hacker forum, the guys at Imperva came up with a report called "Hacker Intelligence Initiative, Monthly Trend Report", that shows these ar... |
18 October 2011
03:14 GMT |
|
|
Microsoft has made available for download a new tool designed to help customers evaluate their projects and see whether their Cloud applications are exposed to Denial of Service attacks. The SDL Regex Fuzzer is now up for grabs from the Microsoft Download Center, free of charge, and as the official label implies, th... |
13 October 2010
06:27 GMT |
|
|
Microsoft has made available for download the second Beta development milestone of an anti-DoS extension for version 7.0 of Internet information Services. The Microsoft Dynamic IP Restrictions for IIS 7.0 has reached Beta 2 and is up for grabs via the Microsoft Download Center in two flavors, 32-bit (x86) and 64-bit... |
27 August 2010
06:19 GMT |
|
|
Microsoft has reacted rapidly to public reports of a zero-day denial-of-service vulnerability in its latest iterations of the Windows client and server operating systems, and is providing customers with guidance on how to block potential attempts to take advantage of the security flaw. In this regard, the Redmond com... |
14 November 2009
07:04 GMT |
|
|
Windows 7 might not have been affected by any of the November security bulletins released by Microsoft, but this doesn’t mean that the operating system is bulletproof. In fact, a zero-day vulnerability, impacting both the latest iteration of Windows client and server operating systems, has been documented in th... |
12 November 2009
10:09 GMT |
|
|
A recent security report from Maksymilian Arciemowicz presented on the SecurityReason website details how remote users could crash PCs running Kaspersky-owned products. Pointing the antivirus to parse a URL, the users' CPU can be tricked to consume excessive resources and eventually crash. The vulnerability aff... |
21 August 2009
10:02 GMT |
|
|
What better way to revitalize the Windows brand than to go back in time all the way to the “good old” DOS days? The original steps of the new, reportedly $300 million-worth Windows marketing campaign managed to focus only in part on the Windows client itself, delivering instead a much broader approach als... |
10 December 2008
04:49 GMT |
|
|
A security vulnerability was discovered yesterday, 25 August 2008, in the Linux kernel packages of the Ubuntu 8.04 LTS, 7.10, 7.04 and 6.06 LTS distributions (also applies to Kubuntu, Edubuntu and Xubuntu). This kernel vulnerability could lead to DoS (Denial of Service) attacks and/or loss of privacy. The security fl... |
26 August 2008
02:29 GMT |
|
|
Blogs were inaccessible for about 5 to 15 minutes in the 4 days that have passed since Saturday, when the attack started. Automattic, the company that maintains WordPress.com, was knee deep in the work laid before them by hackers all throughout this period and managed to restore most of the service's original fu... |
20 February 2008
10:53 GMT |
|
|
The distributed denial of service has been revealed to be the second most feared thing for Internet Service providers out there, as a recent study by Arbor Networks shows. Their worst fear is a botnet, since not only can it be used for DDoS but it has other capabilities, too. However, BT, in partnership with Arbor Ne... |
4 October 2007
03:02 GMT |
|
|
Microsoft Live Messenger is just another one of the products that help Microsoft maintain its first place in the chart for the most vulnerable vendors. Version 8.1 and possibly other versions too, have a flaw. The application does not bound-check user-supplied input the way it should and that's why it is prone t... |
25 September 2007
04:15 GMT |
|
|
A flaw has been disclosed within Apple Airport Extreme Base Station. This, if properly exploited, can cause a denial of service, but do not worry, the vendor has already released a patch to repair this issue! It will only affect firmware versions prior to 7.2.1, so just update and this will no longer be a problem for... |
5 September 2007
09:28 GMT |
|
|
StarCraft Brood War has been disclosed to have a vulnerability that may cause a denial of service (DoS) attack. The flaw comes with the minimap preview and it has not been repaired by any patch. It's not such a big deal, but somebody could make you program crash (remotely) right in the middle of the game, which ... |
5 September 2007
02:53 GMT |
|
|
This software has been disclosed to have a couple of vulnerabilities that, if exploited by malicious users, could cause Denial of Service. The DoS attack is an attempt to make a computer resource unavailable to a certain user. It is generally used to prevent an Internet site or service from functioning efficiently or... |
22 August 2007
11:18 GMT |
|
|
Windows Vista can be completely killed by pressing a simple combination of just two keys. All you need to crush Microsoft's latest operating system and put the much-applauded Wow at an end is two fingers. This issue has been reported independently of Microsoft, and the Redmond company has failed to issue any off... |
13 July 2007
14:22 GMT |
|
|
Windows Vista, Microsoft's most secure Windows platform on the market, can be rendered inoperable via network attacks. A vulnerability residing in the operating system's network stacks makes Vista vulnerable to exploits through a local network. Due to the fact that the attacks do not allow for remote code e... |
17 May 2007
05:13 GMT |
|
|
|
|
Find us on Google+
