7 hours ago by HoffeltZiobro560

Just last Friday, the hacker collective Anonymous claimed victory for gaining access a private FBI conference call — as well as taking down several websites. Here’s today’s deja vu moment: Anonymous has accepted credit for downing the Central Intelligence Agency’s website and hacking personal inform ...

Gee Thanks, President Obama - geethankspresidentobama.com

22 hours ago by gregg

Free Web tool consolidates data on code vulnerabilitiesITworld.comBy John Cox, Network World | Security Add a new comment February 10, 2012, 12:59 PM — Enterprise coders can now use an open source Web application that lets them consolidate software vulnerability data from a range of scanning and tes ...

Web Based Inventory - blog.webbasedinventory.net

3 days ago by Perry Varanoid

"Injecting malicious code into the HTML used on legitimate Web sites is a key part of the infection lifecycle for many attack crews, and they often disguise and obfuscate their code to make it more difficult to analyze or so it appears to be legitimate code.

Varanoid.com - varanoid.com

3 days ago by Reid W

From Project Basecamp, we learned that the Koyo series of PLCs has some pretty fun security issues. The first issue is with our test device’s built-in webserver. In addition to having denial-of-service vulnerabilities, the web server itself requires no authentication and allows changes to the PLC co ...

Digital Bond's SCADA ... - digitalbond.com

4 days ago by Gina

Recently, Oracle released a patch which fixed denial-of-service vulnerability in the Oracle WebLogic Server, Application Server and iPlanet Web Server. In a security bulletin Oracle warned that "vulnerability may be remotely exploitable without authentication, i.e., it may be exploited over a networ ...

spywared.com - spywared.com

5 days ago

Web application vulnerabilities still on the riseiTWire (press release)“Hopefully this document will provide help as a source of guidance, letting developers and security professionals prioritise and... The Web Buyer Guide is a comprehensive directory used by today’s teach and business savvy Web buy ...

Web Buyers Guide - webbuyerguide.org

7 days ago by diocyde

An exploration into the potential power of collaborative, mission-focused APT research groups This post will be one of several that will reveal the origins of the investigation, research, and analysis group effort behind what has been revealed as Operation Starlight. BACKGROUND The formation, vision ...

Veiled Shadows - conanthedestroyer.net

8 days ago by Shaify Mehta

The vulnerability which we are about to demonstrate in my opinion is the number 1 reason why websites hacked and are exploited further to the server level. When a ...

Born To Hack.!! - borntohack.in

8 days ago by Reid W

The Rockwell Automation vulnerabilities that Rubén Santamarta uncovered for Basecamp were in my opinion the most challenging and interesting in the entire project (the very close second-place device being the Koyo). I say that because the protocol is something that a normal security researcher has n ...

Digital Bond's SCADA ... - digitalbond.com

10 days ago by Reid W

I’ve experienced a lot of cognitive dissonance concerning the Basecamp disclosure and exploit tools release over the last few months. I might as well explain some more thinking of why doing what we’ve done is a good idea in the end. I’ll repeat Dale first: PLCs are vulnerable. EOL. This next bit is ...

Digital Bond's SCADA ... - digitalbond.com