|
Home > News > Tags > exploit
|
|
30
More: next 50 >>
BioWare has just confirmed a series of temporary bans issued to a variety of Star Wars: The Old Republic players, specifically low level users who used an exploit to get high level items and equipment, thus upsetting the in-game balance and its economy.
Star Wars: The Old Republic was released last month and, since ... |
4 January 2012
07:01 GMT |
 |
|
Barely has The Elder Scrolls V: Skyrim been released today, on November 11, 2011, and already players are uncovering a wide array of exploits or glitches, many of which have been recorded and are now available for enjoyment on YouTube.
Skyrim was expected by a huge amount of gamers from all over the world, with Be... |
11 November 2011
05:23 GMT |
|
|
The newly launched Safari 5.1 features sandboxing technology which promises to protect Mac OS X Lion users from web-based exploits that might try to infect them with malware.In computer programming, sandboxing refers to the practice of isolating a process by placing in into a restricted environment. A sandboxed proce... |
21 July 2011
08:08 GMT |
|
|
Rapid7 the company behind the Metasploit penetration testing framework is offering bounties to security researchers who can write exploits for 30 select vulnerabilities.The program has a prize pool of $5,000 and will run until July 20, however, many of the 30 vulnerabilities have already been claimed.The bounties are... |
16 June 2011
12:45 GMT |
|
|
Google Chrome's security engineers reject the claim that French vulnerability research outfit VUPEN Security broke out of the browser's reputed sandbox.Google's experts claim that this wasn't an attack against the Chrome sandbox itself, but against the Flash Player plug-in bundled with the browser... |
16 May 2011
07:54 GMT |
|
|
French vulnerability research company VUPEN Security announced that the upcoming version of Google Chrome, 12, is also vulnerable to the sandbox escaping attack it recently developed.On Monday, VUPEN announced that, after a lot of work, its researchers managed to devise a Web-based attack capable of breaking out of t... |
11 May 2011
13:26 GMT |
|
|
Security researchers from French vulnerability research outfit VUPEN Security claim they managed to exploit Google Chrome and execute arbitrary code by breaking out of the browser's reputed sandbox.The researchers have published a video of the exploit they developed in action against Chrome 11.0.696.65 running o... |
10 May 2011
03:22 GMT |
|
|
Security researchers from Kaspersky Lab have intercepted a drive-by download attack on imageshack.us that was launched through a malicious advertisement.The malvertizement was loaded from a [censored]mediagroup.com domain and served an exploit for an older vulnerability in Java that was patched in 2010 (CVE-2010-4452... |
4 May 2011
13:12 GMT |
|
|
Sony's recent banning spree on the PlayStation Network can easily be undone by hackers, as a new exploit has reportedly appeared, which allows them to unban their consoles and even ban other devices and users.
Sony has begun fighting back against hackers who took advantage of exploits on its platform and ran ... |
18 February 2011
18:01 GMT |
|
|
The organizers of the Pwn2Own hacking competition taking place at CanSecWest are expecting to see an even greater interest from security researchers this year as the cash prizes have increased."[...] We've upped the ante this time around and the total cash pool allotted for prizes has risen to a whopping $125,00... |
3 February 2011
05:24 GMT |
|
|
SourceForge, the world's largest open source software repository, has reset the password for all of its users following a successful attack against its infrastructure.The SourceForge team discovered the security breach on Thursday when exploits were found uploaded on several servers.A preliminary investigation r... |
29 January 2011
01:16 GMT |
|
|
In a newly published report about the evolution of cybercrime during the past decade, McAfee named the MyDoom worm as the most damaging malware threat.Dubbed "A Good Decade for Cybercrime," McAfee's report [pdf] looks at how the threat landscape evolved from a battleground of rival hackers seeking notoriety to a... |
26 January 2011
04:52 GMT |
|
|
Adobe announced that the next major version of its PDF products, which includes the much awaited sandboxed Adobe Reader, will be released next month.Dubbed Acrobat X, the new product family will include Adobe Reader X, Acrobat X Suite, Acrobat X Pro, and Acrobat X Standard.From a security perspective the release will... |
18 October 2010
06:05 GMT |
|
|
The owners of iOS devices who eagerly awaited greenpois0n on Sunday, had the surprise to get a similar jailbreak from a separate hacker and as it turns out, it's based on different boot ROM exploit.On September 8, hackers from the Chronic Dev Team announced that they created an exploit for a bug located in the ... |
12 October 2010
07:54 GMT |
|
|
The Twitter “accept” bug made quite a splash a couple of days ago, as it enabled Twitter users to follow anyone on the site. What’s more, the exploit was so simple and obvious that virtually anyone could do it. And plenty of people did, at one point, more than 6,000 people were trying to exploit the... |
13 May 2010
07:47 GMT |
|
|
A post over at PC Tools’ iAntivirus blog reveals that, “A new exploit code has been seen in the wild that attacks Windows, Unix, Linux, and Mac OSX systems.” The company developing antivirus software claims that the exploit itself is rather old-style and short, but effective nonetheless, given this ... |
5 February 2010
04:28 GMT |
|
|
The popular technology blog TechCrunch was hit by hackers yesterday evening, resulting in a downtime of several hours. The website's home page was altered to only display a link to illegal content.TechCrunch.com is a technology blog founded in 2005, which has grown to become one of the major sources of technolog... |
26 January 2010
10:06 GMT |
|
|
A revision to Patch 1.24 for Warcraft III is now available for free download, Blizzard Entertainment has announced. The new update is available for Warcraft III and its two installments, Reign of Chaos and The Frozen Throne. Bringing the fantasy real-time strategy game to version 1.24d, the recent release fixes an ex... |
22 January 2010
06:45 GMT |
|
|
A new BootROM called iBoot-359.3.2 has been spotted in new iPhone 3GS units, according to MuscleNerd of the iPhone Dev Team. The BootROM is resistant to the 24kpwn exploit currently used to jailbreak the iPhone and iPod touch. Softpedia doesn’t condone jailbreaking. Via an iClarified report, a tipster provides... |
14 October 2009
10:11 GMT |
|
|
Tavis Ormandy and Julien Tiennes, two security specialists from Google, reported last night (August 13th) that they had discovered a critical security vulnerability in all Linux kernels (2.4 and 2.6) since 2001, for all architectures. The CVE-2009-2692 vulnerability allows regular users to get root rights on the affe... |
14 August 2009
08:55 GMT |
|
|
It is nothing short of ironic that game password stealing malware is being associated with an exploit designed to target a vulnerability in DirectX. But Microsoft officially confirmed that malicious code designed to harvest account credentials for online games had been detected bundled with exploits targeting the Dir... |
26 June 2009
10:43 GMT |
|
|
Information on a new 0-day vulnerability affecting Microsoft server is available in the wild, the Redmond company has confirmed. The software giant has informed that it is investing public reports of a security hole in various versions of Internet Information Services (IIS). The Redmond company has published a prelim... |
19 May 2009
04:08 GMT |
|
|
As you all know, Canonical's popular Ubuntu Linux distribution ships with Transmission as the default BitTorrent client. One of the newest features of Transmission is a web-based interface, accessible from your Internet browser. And though there aren't many users interested in or aware of this alternative w... |
13 May 2009
07:01 GMT |
|
|
Microsoft has acknowledged officially that a Critical zero-day vulnerability affecting the PowerPoint component of various versions of the Office System is targeted by attacks in the wild. At this point in time there is no update designed to patch the security flaw that impacts Office PowerPoint 2000 Service Pack 3, ... |
3 April 2009
09:18 GMT |
|
|
Microsoft has squashed reports of a new zero-day Critical vulnerability affecting versions 9, 10, and 11 of Windows Media Player, which emerged ahead of Christmas. The Redmond company indeed confirmed that there was an issue that could lead to Windows Media Player crashing, however, it denied that it could be remotel... |
30 December 2008
06:08 GMT |
|
|
We've talked about the exploits related to mining and refining in EVE Online, the MMO created and maintained by Icelandic developers CCP. It seems that a bug, which can be traced back to 2004, was used by a select group of players to basically manufacture resources out of thin air. The resources were in turn eit... |
22 December 2008
17:11 GMT |
|
|
Expanding the concept of user protection beyond the traditional meaning associated with browser security, Microsoft warned that surfing adult content websites with Internet Explorer could expose users to attacks involving exploits of a yet unpatched vulnerability in all supported versions of IE, including IE8 Beta 2.... |
16 December 2008
07:48 GMT |
|
|
The exploit for a vulnerability affecting the Server Service on all supported versions of Windows has been included in a commercial malware kit, available for sale. MS08-067 is labeled with a maximum severity rating of Critical, and the security bulletin is designed to patch vulnerable Windows operating systems, whic... |
17 November 2008
14:51 GMT |
|
|
Bojan Zdrnja from the Internet Storm Center (ISC) warns that he has encountered malicious PDF files, which exploit the recently announced and patched JavaScript-based buffer overflow vulnerability in Adobe Reader and Acrobat 8.1.2 and older. The attack is based on proof of concept code that was released on exploit tr... |
8 November 2008
06:12 GMT |
|
|
A few days ago, the well known vulnerability tracking company Secunia released the results of a test aimed at comparing vulnerability exploit detection rates of Internet Security Suite-type products from several anti-virus vendors. The results were surprisingly disappointing, with a single product scoring a rate high... |
16 October 2008
09:13 GMT |
|
|
Microsoft has come out gunning for an exploit test performed by security outfit Secunia involving 12 Internet Security Suites among which Windows Live OneCare. The Redmond company labeled the results of the exploits targeting vulnerabilities test as misleading and confusing because Secunia focused exclusively on the ... |
16 October 2008
07:41 GMT |
|
|
A remotely exploitable buffer overflow vulnerability that can allow remote code execution has been identified in the latest version of mIRC (6.34). The vulnerability is not patched yet and users are advised to be cautious when connecting to IRC servers or opening irc:// links.Secunia released a security advisory rega... |
3 October 2008
10:55 GMT |
|
|
Researchers Jeremiah Grossman, founder of WhiteHat Security, and Robert “RSnake” Hansen, founder of SecTheory, announced that they would fully disclose their research and PoC exploits at the Hack In The Box (HITB) conference in Kuala Lumpur, 27-30 October. The researchers previously canceled the presentat... |
30 September 2008
06:22 GMT |
|
|
Soon after Apple updated QuickTime to version 7.5.5, a certain "Securfrog" published a code that can (allegedly) be used to crash any Web browser with the QuickTime plug-in. According to the person who found the flaw, a memory heap overflow can be created because of the way QuickTime handles long strings of data.&ldq... |
19 September 2008
03:38 GMT |
|
|
Microsoft released last week an advisory and a security update for a critical vulnerability in Media Encoder 9 ActiveX as part of their Patch Tuesday (September 9). Not long after this vulnerability became public knowledge, a PoC (Proof of Concept) exploit was posted on Milw0rm and attacks based on it started to be d... |
16 September 2008
06:36 GMT |
|
|
Security researcher Kevin Finisterre has released a working exploit for a vulnerability discovered in June in the CitectSCADA software used by many companies to control industrial machineries. This poses a threat for vital strategic facilities like power/water distribution plants or oil/gas refineries to name a few. ... |
10 September 2008
09:50 GMT |
|
|
Intel has issued BIOS security updates for several desktop and mobile motherboards. The updates address a flaw in the Q35 chipset that can be exploited in order to run rootkits within the System Management Mode (SMM). The affected motherboard models are DQ35JO, DQ35MP, DP35DP, DG33FB, DG33BU, DG33TL, DX38BT and ... |
27 August 2008
18:00 GMT |
|
|
Websense Inc., a major company that offers web security filtering and solutions, has discovered that the DNS servers of China Netcom (CNC), one of the country's leading ISPs, are compromised. The servers suffer from poisoned DNS entries injection, resulting from exploitation of the flaw in the DNS system core, u... |
22 August 2008
06:49 GMT |
|
|
Microsoft's monthly release of security bulletins is bound to get a tad richer as far as the information provided to customers is concerned come October 2008. This will happen via the new Exploitability Index, introduced at the Black Hat USA 2008 conference on August 5, 2008. The new resource was spawned in acco... |
6 August 2008
09:10 GMT |
|
|
ActiveX controls are by now nothing short of traditional vectors of attack because of their intimate integration with Microsoft's software products. The latest illustrative examples in this context are the new attacks targeting a Critical vulnerability in the ActiveX control for Microsoft Access. The Redmond com... |
8 July 2008
05:42 GMT |
|
|
ZDNet is reporting that "the Google-backed StopBadware coalition has called on Apple to rethink its stance" on the Safari "carpet bomb" issue. Reported weeks ago by Nitesh Dhanjani, the flaw puts both Mac and Windows users at a serious security risk, according to voices on the Internet. Apple doesn't seem to be ... |
30 May 2008
03:59 GMT |
|
|
The Sunnyvale-based company Yahoo has just rolled out SearchScan, a technology developed with the help of McAfee, that provides protection from viruses, spyware and spam, usually delivered through malicious websites. Since some of these pages may be already indexed by Yahoo Search and returned to the user, SearchScan... |
6 May 2008
02:11 GMT |
|
|
Word on the web is that the exploit Charlie Miller used to "pwn and own" Apple's MacBook Air at CanSecWest last month had actually been acknowledged and publicly revealed almost a year before the contest.NetworkWorld is reporting that security researcher Chris Evans said in an email interview that he found the b... |
22 April 2008
06:31 GMT |
|
|
Following last month's CanSecWest conference which saw Apple's MacBook Air pwned and owned in less than two minutes, people have started talking. Apple's Macs are known for being secure, not because of the operating system's architecture, but because of hackers' lacking interest in the platfo... |
11 April 2008
05:05 GMT |
|
|
Well, this is a bit of a surprise. This year's 'PWN to Own' contest hosted at CanSecWest saw Apple's MacBook Air get PWNED in 2 minutes flat. Charlie Miller (famed iPhone hacker), Jake Honoroff and Mark Daniel of Independent Security Evaluators have successfully compromised the Apple MacBook Air, ... |
28 March 2008
05:51 GMT |
|
|
It is the second Tuesday of February and users of Microsoft's Office 2004 for Mac are getting a bit of a treat. Actually, considering the risk they've been exposed to so far, it's more of a life-saver, but we'll just leave it at that. The patch (.dmg file size: 12mb), available right HERE for imme... |
13 February 2008
13:11 GMT |
|
|
Microsoft's Internet Explorer is without a doubt the main vector of attacks, when it comes down to web-based threats. Its ubiquity, as well as its intimate integration into the Windows platform, makes it an excellent avenue for attacks. With IE6, Microsoft has gained an ill reputation for failing dramatically to... |
6 February 2008
07:38 GMT |
|
|
Hackers are always looking for vulnerabilities, no matter if we're talking about software glitches or weak security measures set up by the computer/network administrator. And if there's a vulnerability in your printer configuration, they exploit it too. Today's piece of news is about what security rese... |
14 January 2008
04:00 GMT |
|
|
Moving from vulnerabilities to patches and then to the ensuing exploits is a natural order of security evolution for Microsoft products. And the company's monthly patch cycle comes only to confirm this trend. In the aftermath of the security bulletins issued on October 9, 2007, exploits appeared targeting an ini... |
11 October 2007
03:42 GMT |
|
|
Cyber-crooks use all sorts of methods to steal one person's data or identity. They will go as far as pretending to be high-profile companies, in order to trick users. Now they pretend to be representatives of Visa and say that you have been enrolled in a program, then ask you for some data of course, it's ... |
25 September 2007
08:17 GMT |
|
More: next 50 >> |
|
|
Find us on Google+
