Sources
SecurityFocus Vulnerabilities
- Vuln: Xerox WorkCentre PJL Daemon Buffer Overflow Vulnerability 0 sec old
- Vuln: TYPO3 Diocese of Portsmouth Calendar Unspecified SQL Injection Vulnerability 0 sec old
- More rss feeds from SecurityFocus 33 min 12 sec old
- Bugtraq: [ MDVSA-2010:170 ] wget 33 min 12 sec old
- Bugtraq: [SECURITY] [DSA-2102-1] New barnowl packages fix arbitrary code execution 33 min 12 sec old
- Bugtraq: VUPEN Security Research - Google Chrome Focus Processing Memory Corruption Vulnerability (VUPEN-SR-2010-249) 33 min 12 sec old
- Bugtraq: Re: Re: IIS5.1 Directory Authentication Bypass by using ?:$I30:$Index_Allocation? 33 min 12 sec old
- Bugtraq: [security bulletin] HPSBMA02572 SSRT100082 rev.1 - HP Operations Agent Running on Windows, Local Elevation of Privileges and Remote Execution of Arbitrary Code 1 day 17 hours old
- Bugtraq: [USN-982-1] Wget vulnerability 1 day 20 hours old
- Bugtraq: [ MDVSA-2010:169 ] mozilla-thunderbird 1 day 20 hours old
Phishing Scams
- New Message from ANZ National Bank - ANZ 0 sec old
- HALIFAX - Account Security Validation - Halifax Bank Plc 16 hours 32 min old
- Message Update:- Dear NatWest Customer - Natwest 16 hours 32 min old
- Chase Bank Update Alert! - Chase Online 16 hours 32 min old
- Lloyds TSB Account Information - Lloyds TSB 16 hours 32 min old
- Alliance and Leicester Bank Security Message - Alliance 17 hours 32 min old
- Secure Your online Banking - HSBC BANK 17 hours 32 min old
- Update Your Account Online - HSBC 17 hours 32 min old
- Santander Online Banking Account Update Notification. - Alliance and Leicester 22 hours 32 min old
- craigslist: Account Log In - CRAIGSLIST SUPPORT 1 day 32 min old
Team Cymru Internet Security News
- Scam targets south Georgia man 15 min 28 sec old
- Look before you click 1 hour 3 min old
- BlackBerry overcomes Indian roadblocks but Google, Skype see trouble ahead 2 hours 51 min old
- Bollywood hiring cyber hitmen to combat piracy 2 hours 58 min old
- DHS to expand cybersecurity program for researchers 3 hours 55 min old
- Indian Websites Warned of Cyber Attack by Pak Hackers 4 hours 27 min old
- Cyberwarrior Training Camp 4 hours 58 min old
- US may stop cyber attacks at source 6 hours 25 min old
- German court rules against YouTube over copyright 10 hours 24 min old
- Two New Yorkers charged as ringleaders of massive identity theft operation were once based in Bayonne 10 hours 29 min old
SANS Internet Storm Center
- Infocon: green 33 min 11 sec old
- What's not to Like about "Like?", (Sat, Sep 4th) 16 hours 45 min old
- Investigating Malicious Website Reports, (Sat, Sep 4th) 18 hours 14 min old
- Apple Releases Two Security Updates (One for OSX, One for iTunes) : http://support.apple.com/kb/HT4312 and http://support.apple.com/kb/HT4328, (Fri, Sep 3rd) 1 day 15 hours old
- Microsoft EMETv2 released, (Thu, Sep 2nd) 2 days 16 hours old
- SDF, please!, (Thu, Sep 2nd) 3 days 10 hours old
- Month of Undisclosed 0-day Bugs, (Wed, Sep 1st) 3 days 15 hours old
- Microsoft issues updates to sysinternals ProcDump and Process Monitor: http://blogs.technet.com/b/sysinternals/archive/2010/08/30/updates-procdump-process-monitor-and-a-new-mark-s-blog-post.aspx, (Wed, Sep 1st) 3 days 19 hours old
- VMWARE releases 2 security advisories for ESX Service Console: http://lists.vmware.com/pipermail/security-announce/2010/000103.html and http://lists.vmware.com/pipermail/security-announce/2010/000104.html, (Wed, Sep 1st) 3 days 19 hours old
- Interesting PHP injection, (Tue, Aug 31st) 5 days 2 hours old
SecurityFocus News
- Infocus: Responding to a Brute Force SSH Attack 33 min 12 sec old
- More rss feeds from SecurityFocus 33 min 12 sec old
- Infocus: WiMax: Just Another Security Challenge? 33 min 12 sec old
- Infocus: Data Recovery on Linux and <i>ext3</i> 33 min 12 sec old
- Infocus: Enterprise Intrusion Analysis, Part One 33 min 12 sec old
- Mark Rasch: Hacker-Tool Law Still Does Little 33 min 12 sec old
- Adam O'Donnell: The Scale of Security 33 min 12 sec old
- Mark Rasch: Lazy Workers May Be Deemed Hackers 33 min 12 sec old
- Gunter Ollmann: Time to Squish SQL Injection 33 min 12 sec old
InfoSec News Mailing List
- Cross-subdomain Session Fixation 1 hour 38 min old
- DARPA Soliciting Bids On Insider Threat Prevention 1 hour 38 min old
- Russian government email servers hacked 1 hour 38 min old
- News of the World faces fresh phone hacking charge 1 hour 38 min old
- Secunia Weekly Summary - Issue: 2010-35 1 hour 38 min old
- Russian Trojan blamed for credit card losses at US diner 1 hour 38 min old
- Botnet takedown may yield valuable data 1 hour 38 min old
- Snoop Dogg joins cybercrime fight because 'hack is wack' 1 hour 38 min old
- State retiree data breached 1 hour 38 min old
- Darpa’s Star Hacker Looks to WikiLeak-Proof Pentagon 1 hour 38 min old
Apple security-announce
- APPLE-SA-2010-09-01-1 iTunes 10 3 hours 55 min old
- APPLE-SA-2010-08-24-1 Security Update 2010-005 5 days 6 hours old
- APPLE-SA-2010-08-12-1 QuickTime 7.6.7 5 days 6 hours old
- APPLE-SA-2010-08-11-1 iOS 4.0.2 Update for iPhone and iPod touch 5 days 6 hours old
- APPLE-SA-2010-08-11-2 iOS 3.2.2 Update for iPad 5 days 6 hours old
Penetration Testing Mailing List
- Re: Pentest Criteria 3 hours 56 min old
- Arachni v0.1 released 4 hours 7 min old
- IBWAS10 1 day 17 hours old
- Re: Pentestn ASP website with tinymce 1 day 17 hours old
- Re: Pentestn ASP website with tinymce 1 day 17 hours old
- Pentest Criteria 1 day 17 hours old
- Re: WAF Testing..suggestions?? 3 days 18 hours old
- Re: WAF Testing..suggestions?? 3 days 18 hours old
- Re: Pentestn ASP website with tinymce 3 days 18 hours old
- nullcon Goa dwitiya (2.0) Call For Papers 3 days 18 hours old
The Register - Security
- Google pays $8.5m to settle Buzz privacy invasion suit 4 hours 31 min old
- Nigerian man gets 12 years for $1.3m 419 scam 1 day 16 hours old
- Spammers latch onto Ping to pump iPhone survey scams 2 days 1 hour old
- Symantec Snoop Dogg rap contest site rickrolled 2 days 2 hours old
- Phone bugging scandal reignited as <em>NotW</em> suspends reporter 2 days 3 hours old
- Microsoft freshens retro code lock-down tool 2 days 14 hours old
- iTunes update plugs WebKit flaw 2 days 21 hours old
- Symantec and Snoop Dogg launch cybercrime rap contest 3 days 2 hours old
- Cyber-jihadists deface home of teddy bears' picnic 3 days 3 hours old
- Feds crack phone clone scam that cost Sprint $15m 3 days 11 hours old
DNS-BH - Malware Blocking Domain List
- c&c, zeus, rogue, fastflux, exploitpack domains 7 hours 50 min old
- Underscores in domain names 1 day 16 hours old
- 212 New Malicious Sites to Block 3 days 8 hours old
- PowerShell and DNS Blackholes 4 days 20 hours old
- 189 new malicious domains 6 days 9 hours old
- Delistings: Bit.ly, widgetserver.com, jscache.com, fagfolkfakta.no 1 week 1 day old
- 220 malicious sites to block 1 week 2 days old
- zone file issue 1 week 4 days old
- 254 New Malicious Domains 1 week 5 days old
- Site Delisting: JPLTECH.COM 1 week 5 days old
Full Disclosure Mailing List
- Re: reCaptcha secret key - where is the point? 10 hours 47 min old
- Adobe Flash Player – user-ass isted privacy compromise 13 hours 7 min old
- Re: reCaptcha secret key - where is the point? 13 hours 38 min old
- reCaptcha secret key - where is the point? 13 hours 53 min old
- Re: Tuscl.net SQL injection with 30k Plain Text Passwords & 80k Email list 15 hours 52 min old
- Re: Tuscl.net SQL injection with 30k Plain Text Passwords & 80k Email list 15 hours 55 min old
- Re: Virus submission site 1 day 2 hours old
- Microsoft Internet explorer 8 DLL Hijacking (IESHIMS.DLL) 1 day 7 hours old
- Re: Virus submission site 1 day 8 hours old
- Internet Explorer 8 PoC: Twitter forced-tweet demo 1 day 12 hours old
IBM Internet Security Systems Frequency X Blog
- Playing With Tabnabbing 16 hours 47 min old
- Understanding the Low Fragmentation Heap at Blackhat 16 hours 47 min old
- Follow us at Blackhat on Twitter! 16 hours 47 min old
- Protecting Against Remote DLL Preloading Vulnerabilities 16 hours 47 min old
- The Monday After The SQL Storm 16 hours 47 min old
- A new wave of ZIP malware spam 16 hours 47 min old
- What I'm seeing at Blackhat 16 hours 47 min old
- Blackhat USA for Mobile Researchers 16 hours 47 min old
- Mid-Year 2010 X-Force Trend and Risk Report - Update to Unpatched Vulnerabilities Chart 16 hours 47 min old
- MS10-046 .lnk vulnerability? We have that... 16 hours 47 min old
US-CERT: Cyber Security Tips
- ST05-005: Reviewing End-User License Agreements 16 hours 47 min old
- ST05-004: Avoiding Copyright Infringement 16 hours 47 min old
- ST05-011: Effectively Erasing Files 16 hours 47 min old
- ST05-008: How Anonymous Are You? 16 hours 47 min old
- ST05-012: Supplementing Passwords 16 hours 47 min old
- ST05-014: Real-World Warnings Keep You Safe Online 16 hours 47 min old
- ST05-010: Understanding Web Site Certificates 16 hours 47 min old
- ST04-023: Understanding Your Computer: Email Clients 16 hours 47 min old
- ST05-007: Risks of File-Sharing Technology 16 hours 47 min old
- ST05-013: Guidelines for Publishing Information Online 16 hours 47 min old
US-CERT: Technical Cyber Security Alerts
- TA10-162A: Adobe Flash and AIR Vulnerabilities 16 hours 47 min old
- TA10-222A: Microsoft Updates for Multiple Vulnerabilities 16 hours 47 min old
- TA10-223A: Adobe Flash and AIR Vulnerabilities 16 hours 47 min old
- TA10-159B: Microsoft Updates for Multiple Vulnerabilities 16 hours 47 min old
- TA10-159A: Adobe Flash, Reader, and Acrobat Vulnerability 16 hours 47 min old
- TA10-231A: Adobe Reader and Acrobat Vulnerabilities 16 hours 47 min old
- TA10-238A: Microsoft Windows Insecurely Loads Dynamic Libraries 16 hours 47 min old
- TA10-131A: Microsoft Updates for Multiple Vulnerabilities 16 hours 47 min old
- TA10-194A: Microsoft Updates for Multiple Vulnerabilities 16 hours 47 min old
- TA10-194B: Oracle Updates for Multiple Vulnerabilities 16 hours 47 min old
Heise Security
- The H Week - Tablets, Ubuntu 10.10, Chrome 6, & QuickTime vulnerabilities 1 day 26 min old
- Microsoft hardening tool with graphical user interface 1 day 21 hours old
- Google Chrome turns version 6 on its second birthday 2 days 19 hours old
- PS3 hack source code published 2 days 20 hours old
- Wireshark 1.4.0 drops Windows 2000 support 3 days 1 hour old
- iTunes 10 addresses 13 security vulnerabilities 3 days 2 hours old
- Secunia's PSI 2.0 beta tackles Windows update annoyances 3 days 20 hours old
- Microsoft continues to workaround DLL vulnerability 3 days 22 hours old
- Backdoor discovered in QuickTime 4 days 19 hours old
- Unpatched security holes: IBM re-evaluates 4 days 22 hours old
Daily Dave
- Cracking video is up 1 day 10 hours old
- ColdFusion Directory Traversal 1 day 16 hours old
- nullcon Goa dwitiya (2.0) Call For Papers 2 days 12 hours old
- Re: SELinux, was Re: X11 -> Root? (Qubes square rooted) 2 days 13 hours old
- Re: Commission on Cybersecurity for the 44th Presidency and your right to cyber (security) 2 days 14 hours old
- SELinux, was Re: X11 -> Root? (Qubes square rooted) 2 days 15 hours old
- Rooted CON 2011 - Call for Papers 2 days 16 hours old
- Re: Commission on Cybersecurity for the 44th Presidency and your right to cyber (security) 3 days 11 hours old
- SILICAU Lightning Demo (Wireless key cracking) 3 days 18 hours old
- Re: Commission on Cybersecurity for the 44th Presidency and your right to cyber (security) 3 days 20 hours old
Packet Storm Security Advisories
- USN-982-1.txt 1 day 11 hours old
- moaub02-apple.pdf 1 day 11 hours old
- glsa-201009-01.txt 1 day 11 hours old
- MDVSA-2010-170.txt 1 day 11 hours old
- ie8-forcedtweet.txt 1 day 11 hours old
- HPSBMA02572-SSRT100082.txt 1 day 11 hours old
- dsa-2102-1.txt 1 day 11 hours old
- googlechrome-corruption.txt 1 day 11 hours old
- moaub03-visinia.pdf 1 day 11 hours old
- moaub03-trendmicro.pdf 1 day 11 hours old
Packet Storm Security Exploits
- pligg104-sql.txt 1 day 11 hours old
- smbind-sql.txt 1 day 11 hours old
- moaub-visinia.txt 1 day 11 hours old
- moaub-trendmicro.txt 1 day 11 hours old
- webmanagerpro-sql.txt 1 day 11 hours old
- onecms-xss.txt 1 day 11 hours old
- moaub-quicktime.txt 1 day 11 hours old
- moovida-dllhijack.tgz 1 day 11 hours old
- PRL-2010-07.txt 1 day 11 hours old
- vbshout-rfilfi.txt 1 day 11 hours old
Schneier on Security
- Friday Squid Blogging: Squid Car 1 day 13 hours old
- UAE Man-in-the-Middle Attack Against SSL 2 days 5 min old
- Successful Attack Against a Quantum Cryptography System 2 days 16 hours old
- Cyber-Offence is the New Cyber-Defense 2 days 22 hours old
- Wanted: Skein Hardware Help 3 days 17 hours old
- More Skein News 4 days 30 min old
- Eavesdropping on Smart Homes with Distributed Wireless Sensors 4 days 17 hours old
- High School Teacher Assigns Movie-Plot Threat Contest Problem 4 days 23 hours old
- Misidentification and the Court System 5 days 18 hours old
- Security Theater on the Boston T 6 days 1 hour old
SecuriTeam.com
- VMware Tools for Windows Local Binary Planting Vulnerability 1 day 16 hours old
- VMware Tools for Windows Remote Binary Planting Vulnerability 1 day 16 hours old
- TANDBERG Video Communication Server Arbitrary File Retrieval Vulnerability 2 days 16 hours old
- Mozilla Firefox nsTreeSelection Dangling Pointer Code Execution Vulnerability 2 days 16 hours old
- VMWare VMnc Codec HexTile Encoding Buffer Overflow Vulnerability 4 days 11 hours old
- Mozilla Firefox Plugin Parameter EnsureCachedAttrParamArrays Code Execution Vulnerability 4 days 11 hours old
Bugtraq Mailing List
- Re: Re: IIS5.1 Directory Authentication Bypass by using ?:$I30:$Index_Allocation? 1 day 16 hours old
- VUPEN Security Research - Google Chrome Focus Processing Memory Corruption Vulnerability (VUPEN-SR-2010-249) 1 day 19 hours old
- [ MDVSA-2010:170 ] wget 1 day 19 hours old
- [SECURITY] [DSA-2102-1] New barnowl packages fix arbitrary code execution 1 day 19 hours old
- nullcon Goa dwitiya (2.0) Call For Papers 1 day 19 hours old
- [ GLSA 201009-01 ] wxGTK: User-assisted execution of arbitrary code 1 day 19 hours old
- [security bulletin] HPSBMA02572 SSRT100082 rev.1 - HP Operations Agent Running on Windows, Local Elevation of Privileges and Remote Execution of Arbitrary Code 1 day 19 hours old
- Rooted CON 2011 - Call for Papers 1 day 19 hours old
- Vulnerabilities in CMS WebManager-Pro 2 days 19 hours old
- {PRL} Novell Netware OpenSSH Remote Stack Overflow 2 days 19 hours old
Dark Reading - Analysis
- Tech Insight: Retooling Vulnerability Scanning, Penetration Testing for IPv6 1 day 20 hours old
- Five Ways to Stop Mass SQL Injection Attacks 2 days 16 hours old
- IPv6 Transition Poses New Security Threats 2 days 16 hours old
- Networked Scanners Offer A Window Into The Enterprise, Researcher Says 3 days 14 hours old
- U.S. Businesses Could Lose Up To $1 Billion In Online Banking Fraud This Year 3 days 14 hours old
- Product Watch: Verizon, VMware Team Up With Hybrid Cloud Service 3 days 19 hours old
- Could USB Flash Drives Be Your Enterprise's Weakest Link? 4 days 13 hours old
- Delaware Contractor Mistakenly Posts Personal Data Of 22,000 Employees 4 days 14 hours old
- IBM Corrects Unpatched Vulnerability Numbers After Google Challenge 4 days 17 hours old
- Major Disruption of Pushdo Botnet Wasn't The Original Goal 5 days 15 hours old
Dark Reading - News
- Tech Insight: Retooling Vulnerability Scanning, Penetration Testing for IPv6 1 day 20 hours old
- Five Ways to Stop Mass SQL Injection Attacks 2 days 16 hours old
- IPv6 Transition Poses New Security Threats 2 days 16 hours old
- Networked Scanners Offer A Window Into The Enterprise, Researcher Says 3 days 14 hours old
- U.S. Businesses Could Lose Up To $1 Billion In Online Banking Fraud This Year 3 days 14 hours old
- Product Watch: Verizon, VMware Team Up With Hybrid Cloud Service 3 days 19 hours old
- Could USB Flash Drives Be Your Enterprise's Weakest Link? 4 days 13 hours old
- Delaware Contractor Mistakenly Posts Personal Data Of 22,000 Employees 4 days 14 hours old
- IBM Corrects Unpatched Vulnerability Numbers After Google Challenge 4 days 17 hours old
- Major Disruption of Pushdo Botnet Wasn't The Original Goal 5 days 15 hours old
National Vulnerability Database - All Vulnerabilities
- CVE-2010-1325 2 days 4 hours old
- CVE-2010-1507 2 days 4 hours old
- CVE-2010-2226 2 days 4 hours old
- CVE-2010-2240 2 days 4 hours old
- CVE-2010-2532 2 days 4 hours old
- CVE-2010-2954 2 days 4 hours old
- CVE-2010-3203 2 days 4 hours old
- CVE-2010-3204 2 days 4 hours old
- CVE-2010-3205 2 days 4 hours old
- CVE-2010-3206 2 days 4 hours old
TaoSecurity
- The Inside Scoop on DoD Thinking 2 days 10 hours old
- Review of Hacking Exposed: Wireless, 2nd Ed Posted 2 days 14 hours old
- GE Looking for Business Response Team Leader 6 days 21 hours old
- Bejtlich on Silver Bullet Podcast 1 week 5 days old
- Review of Least Privilege Security Posted 1 week 5 days old
- Bejtlich Teaching at Black Hat Abu Dhabi 2010 1 week 5 days old
- Review of IT Security Metrics Posted 1 week 6 days old
- Review of Practical Lock Picking Posted 1 week 6 days old
Wired: Threat Level
- ‘Evil’ Eric Schmidt Debuts in Video Targeting Google Privacy 2 days 12 hours old
- Murdoch Reporters’ Phone-Hacking Was Endemic, Victimized Hundreds 2 days 13 hours old
- Police Kill Hostage Taker Who Besieged Discovery Channel 3 days 16 hours old
- Attorney: Army Disabled Manning’s Weapon Prior to Leaks 3 days 18 hours old
- Pirate Bay Documentary in the Works 4 days 14 hours old
- Obama’s Commerce Secretary Talks Tough on Music Piracy 4 days 15 hours old
- Dead Codebreaker Was Linked to NSA Intercept Case 5 days 12 hours old
- Alleged WikiLeaks Leaker Hires Civilian Defense Attorney 5 days 14 hours old
- Second Newspaper Chain Joins Copyright Trolling Operation 5 days 15 hours old
- Alleged Carder ‘BadB’ Charged in $9 Million ATM Heist 5 days 16 hours old
Microsoft Security Vulnerability Research & Defense
- The Enhanced Mitigation Experience Toolkit 2.0 is Now Available 2 days 18 hours old
- An update on the DLL-preloading remote attack vector 4 days 14 hours old
- More information about the DLL Preloading remote attack vector 1 week 5 days old
US-CERT: Cyber Security Bulletins
- SB10-179: Vulnerability Summary for the Week of June 21, 2010 2 days 19 hours old
- SB10-186: Vulnerability Summary for the Week of June 28, 2010 2 days 19 hours old
- SB10-235: Vulnerability Summary for the Week of August 16, 2010 2 days 19 hours old
- SB10-200: Vulnerability Summary for the Week of July 12, 2010 2 days 19 hours old
- SB10-228: Vulnerability Summary for the Week of August 9, 2010 2 days 19 hours old
- SB10-242: Vulnerability Summary for the Week of August 23, 2010 2 days 19 hours old
- SB10-214: Vulnerability Summary for the Week of July 26, 2010 2 days 19 hours old
- SB10-193: Vulnerability Summary for the Week of July 5, 2010 2 days 19 hours old
- SB10-221: Vulnerability Summary for the Week of August 2, 2010 2 days 19 hours old
- SB10-207: Vulnerability Summary for the Week of July 19, 2010 2 days 19 hours old
Cisco Security Advisories
- Cisco IOS XR Software Border Gateway Protocol Vulnerability 2 days 21 hours old
- Cisco Unified Communications Manager Denial of Service Vulnerabilities 1 week 3 days old
- Cisco Unified Presence Denial of Service Vulnerabilities 1 week 3 days old
TrendLabs | Malware Blog
- Pushdo Takedown Damages Botnet 2 days 23 hours old
Tenable Network Security
- Tenable Security Showcase - New York City 3 days 32 min old
- Tenable Receives Passive Network Monitoring Patent 4 days 6 min old
- Tenable Network Security Podcast - Episode 48 4 days 17 hours old
- The Three Legged Stool Of Vulnerability Management 5 days 32 min old
- Tenable Network Security on the Inc 5000 List 6 days 27 min old
- Tenable Network Security Podcast - Episode 47 1 week 4 days old
- Nessus Web Application Scanning - New plugins & Configuration 1 week 5 days old
- Tenable Network Security Podcast - Episode 46 2 weeks 2 days old
digg / security
- Russia's seed bank under threat - One of the biggest and most important seed banks in the world is at risk of being replaced by a private housing development. The facility near St Petersburg houses thousands of varieties of plants, not found anywhere else 3 days 5 hours old
- Reddit ‘excited’ about chance to eat Digg’s lunch 3 days 7 hours old
- Plan for nationwide free wireless broadband finally shot down 3 days 9 hours old
- "Fingers Cross Upcoming Goes Live Tomorrow" - @KevinRose 3 days 9 hours old
- Old Digg Crushes New Digg in Reader Vote 3 days 11 hours old
- 5 Reasons Why Apple TV Is (Still) Boring 3 days 12 hours old
- NOOOO, a gunman is holding someone hostage at the Discovery Channel Headquarters! 3 days 14 hours old
- iPod nano vs touch vs shuffle... fight! 3 days 15 hours old
- Epic's spectacular Unreal Engine 3 tech demo free at iTunes App Store 3 days 15 hours old
- All the Cool New Stuff From Apple Today 3 days 17 hours old
DVLabs: Blogs
- Security Advisory for NetWare 6.5 OpenSSH 3 days 13 hours old
Websense Security Labs Blog
- What are the top threats to Cloud Computing? 3 days 14 hours old
- Apple QuickTime "_MARSHALED_PUNK" 0-day 4 days 20 hours old
- Web Spam leading to Friendster on the rise 1 week 1 day old
Microsoft Malware Protection Center
- Rogue:MSIL/Zeven wants a piece of the Microsoft Security Essentials pie 3 days 14 hours old
- Update not so Tweet for you 4 days 10 hours old
- Alureon Evolves to 64 Bit 1 week 1 day old
- Is it a Monet? Looks different from afar... 1 week 2 days old
F-Secure Security Labs
- PS3 Jailbreak Trojan 3 days 17 hours old
- Corporate Identity Theft Used to Obtain Code Signing Certificate 3 days 17 hours old
- "I possibly wont be back for a while..." 3 days 17 hours old
- DLL Hijacking and Why Loading Libraries is Hard 3 days 17 hours old
- CPAlead Spam on YouTube 3 days 17 hours old
- Facebook Recommends Spam Profiles 3 days 17 hours old
- I May Never Text Again: More Facebook Spam 3 days 17 hours old
- Once Again, Zeus 3 days 17 hours old
- Android Game Isn't Actually a Game 3 days 17 hours old
- When do 258 tweets equal nearly half a million dollars? 3 days 17 hours old
SearchSecurity: Security Wire Daily News
- Microsoft to address DLL load hijacking flaw, issues new tool 3 days 21 hours old
- Researchers, ISPs fail to contain notorious Pushdo botnet 4 days 15 hours old
- CA to acquire Arcot Systems for SaaS identity management 5 days 19 hours old
- Security information sharing is a shared responsibility 5 days 21 hours old
- Intel-McAfee marriage could fuel renewed chip security interest 1 week 2 days old
- Adobe fixes bevy of critical Shockwave Player vulnerabilities 1 week 3 days old
- CEO must prioritize software development improvements, secure coding 1 week 4 days old
- LANDesk Software acquired by private equity firm 1 week 5 days old
Microsoft Security Response Center Blog
- Update on Security Advisory 2269637 4 days 14 hours old
- Microsoft Security Advisory 2269637 Released 2 weeks 5 hours old
Vulnerability Analysis Blog
- Study of Malicious Domain Names: TLD Distribution 4 days 16 hours old
Trend Micro - Newest Malware Advisories
- TROJ_ALUREON.AUH 5 days 3 hours old
- TROJ_TDSS.KAX 5 days 3 hours old
- TROJ_TDSS.FAT 5 days 7 hours old
- TROJ_BANLOAD.VCA 1 week 3 days old
- ADWARE_ZANGO 1 week 4 days old
- TROJ_FAKEAV.FNZ 1 week 5 days old
- TROJ_HILOTI.FNZ 1 week 5 days old
- HTML_REDIR.BA 1 week 6 days old
- JS_REDIR.BB 1 week 6 days old
- TROJ_DLDER.AU 1 week 6 days old
National Vulnerability Database - Fully Analyzed
- CVE-2010-1818 (quicktime) 5 days 4 hours old
- CVE-2010-3196 (db2) 5 days 4 hours old
- CVE-2010-3197 (db2) 5 days 4 hours old
- CVE-2010-3188 (bugtracker.net) 5 days 4 hours old
- CVE-2010-3193 (db2) 5 days 4 hours old
- CVE-2010-3189 (internet_security) 5 days 4 hours old
- CVE-2010-3190 (visual_studio) 5 days 4 hours old
- CVE-2010-3191 (captivate) 5 days 4 hours old
- CVE-2010-3194 (db2) 5 days 4 hours old
- CVE-2010-3195 (db2) 5 days 4 hours old
Michael Geist's Blog
- Commercialization of IP In Canadian Universities: Barely Better Than Break Even 5 days 6 hours old
- EU-Backed Study Finds Counterfeits Pro-Consumer, Rejects Company Complaints 5 days 6 hours old
- CRTC Mandates Wholesale Access for ISPs 5 days 7 hours old
- Conrad Black Case Targets Net Defamation Jurisdiction Standard 6 days 6 hours old
- James Moore on the Private Copying Levy 6 days 6 hours old
- Google, Yahoo Concerned About Bill C-32's Enabler Provision 6 days 8 hours old
- CRA Cracks Down on eBay Seller 6 days 8 hours old
- Next ACTA Round To Be Vice-Ministerial Level Meeting 1 week 2 days old
- CIPPIC Says Facebook Failing Privacy Promises 1 week 2 days old
- "Legislative Guidance" on Fair Dealing: The Plan to Reverse CCH? 1 week 2 days old
@RISK: The Consensus Security Alert
- 10.35.28 DotNetNuke Syndication Handler Remote Denial of Service Issue 1 week 1 day old
- (1) HIGH: Google Chrome Multiple Vulnerabilities 1 week 1 day old
- (2) HIGH: Adobe Shockwave Player Code Execution Vulnerabilities 1 week 1 day old
- 10.35.25 PHPCMS2008 "download.php" Information Disclosure Issue 1 week 1 day old
- 10.35.3 Tuniac ".m3u" File Buffer Overflow 1 week 1 day old
- 10.35.2 UiPlayer "UiCheck.dll" ActiveX Buffer Overflow 1 week 1 day old
- 10.35.1 Adersoft VbsEdit ".vbs" File Denial Of Service Issue 1 week 1 day old
- 10.35.33 SonicWALL E-Class SSL-VPN Format String Issue 1 week 1 day old
- 10.35.32 Blue Coat ProxySG Read Only Administrator Security Bypass Issue 1 week 1 day old
- 10.35.7 Linux Kernel JFS xattr Namespace Rules Security Bypass Issue 1 week 1 day old
SearchSecurity: Network Security Tactics
- Log management best practices: Five tips for success 1 week 4 days old
DVLabs: Published Advisories
- TPTI-10-12 - Adobe Shockwave TextXtra Allocator Integer Overflow Remote Code Execution Vulnerability 1 week 5 days old
- TPTI-10-09 - Adobe Shockwave CSWV Chunk Memory Corruption Remote Code Execution Vulnerability 1 week 5 days old
- TPTI-10-11 - Adobe Shockwave tSAC Chunk Pointer Offset Memory Corruption Remote Code Execution Vulnerability 1 week 5 days old
- TPTI-10-10 - Adobe Shockwave tSAC Chunk Invalid Seek Memory Corruption Remote Code Execution Vulnerability 1 week 5 days old
- TPTI-10-15 - Adobe Shockwave Director mmap Trusted Chunk Size Remote Code Execution Vulnerability 1 week 5 days old
- TPTI-10-14 - Adobe Shockwave Director rcsL Chunk Pointer Offset Remote Code Execution Vulnerability 1 week 5 days old
- TPTI-10-13 - Adobe Shockwave Director tSAC Chunk Remote Code Execution Vulnerability 1 week 5 days old
- TPTI-10-08 - Novell iPrint Client Browser PluginGetDriverFile Uninitialized Pointer Remote Code Execution Vulnerability 1 week 6 days old
Arbor Networks Security Blog
- YoyoDDos: A new family of DDos bots 1 week 5 days old
Microsoft Security Advisories
notsosecure.com
- LFI..Code Exec..Remote Root! 2 weeks 1 day old
SecuriTeam Blogs
- Generating self-signed SSL certificate using OpenSSL 2 weeks 3 days old
- #days Security Conference 2 weeks 6 days old
- Apple Safari Denial Of Service (iPhone, iPad, iPod, OS X, Windows) 0-Day 3 weeks 3 days old
- Microsoft Black Tuesday Summary - August 2010 3 weeks 3 days old
- Apple iPhone/iPod Touch/iPad Security Update 3 weeks 3 days old
- REVIEW: “Land the Tech Job You Love”, Andy Lester 3 weeks 5 days old
Don't Stuff Beans Up Your Nose!
- Poppa’s Got a Brand New Bag 9 weeks 1 day old
FrSIRT Security Advisories
- ERROR - DO NOT CLICK ON THIS LINK 19 weeks 4 days old
- VUPEN Vulnerability Database and Security Advisories 19 weeks 4 days old
- VUPEN closed its XML feeds, you must subscribe to VUPEN VNS 20 weeks 5 days old
- VUPEN - Fedora Security Update Fixes AlienArena Two Vulnerabilities 21 weeks 2 days old
- VUPEN - Fedora Security Update Fixes spamass-milter Code Injection Vulnerability 21 weeks 2 days old
- VUPEN - Fedora Security Update Fixes Java OpenJDK Multiple Vulnerabilities 21 weeks 2 days old
- VUPEN - Fedora Security Update Fixes Moin Cross Site Scripting Vulnerability 21 weeks 2 days old
- VUPEN - Ubuntu Security Update Fixes MoinMoin Two Vulnerabilities 21 weeks 2 days old
- VUPEN - Ubuntu Security Update Fixes ClamAV Two Vulnerabilities 21 weeks 2 days old
- VUPEN - Ubuntu Security Update Fixes Erlang PCRE Buffer Overflow Vulnerability 21 weeks 2 days old
eWEEK Security
- Microsoft Wins Botnet Battle in Court 27 weeks 2 days old
- Intel Says Cyber-attack Targeted Systems in January 27 weeks 4 days old
- FTC Warns of Data Breaches from P2P File Sharing 27 weeks 4 days old
- How to Optimize Your Firewalls for Maximum Performance 27 weeks 4 days old
- 10 Things School Webcam Spying Allegations Teach Us About Privacy 27 weeks 5 days old
- Google Attack Code Linked to Chinese Security Consultant, Report Contends 27 weeks 5 days old
- REVIEW: Netgear Brings Enterprise Security to the Branch Office 27 weeks 5 days old
- FBI Investigates Webcam Spy Allegations Against School 27 weeks 6 days old
- Fighting the Zeus Botnet in Your Enterprise 27 weeks 6 days old
- Report: Google Attacks Linked to 2 Chinese Schools 28 weeks 1 day old
Emergent Chaos
- Migrations 31 weeks 6 days old
- Emergent Planetary Detection via Gravitational Lensing 32 weeks 17 hours old
- People are People Too! 32 weeks 2 days old
- Does it include a launchpad? 32 weeks 5 days old
- Terrorism Links and quotes 33 weeks 2 days old
- Another Week, Another GSM Cipher Bites the Dust 33 weeks 5 days old
Matasano Chargen
- Introduction and a Brief Glimpse into the Inner Workings of Matasano 1 year 8 weeks old
Snort.org
- New Snort.org Site Release - May 27, 2009 1 year 14 weeks old
- Snort 2.8.4.1 Now Available 1 year 14 weeks old
- Come see Marty during his May seminar series 1 year 14 weeks old
- Snort 2.8.5 Beta Now Available 1 year 14 weeks old
- VRT Certified Rules Update Available 1 year 14 weeks old
- 2009 Snort Scholarship Winners Announced 1 year 14 weeks old
- VRT Certified Rules Update Available 1 year 14 weeks old
- VRT Speaking at DojoSec - June 4 1 year 14 weeks old
- VRT Certified Rules Update Available 1 year 14 weeks old
- IP Blacklisting in Snort 1 year 14 weeks old
DoxPara Research
- Tools, Tools, Tools 1 year 22 weeks old
- Taming Conficker, The Easy Way 1 year 22 weeks old
- Infrastructure Attacks: A Growing Concern 1 year 23 weeks old
- Cansec Slides, Now With More TCP NAT2NAT Goodness 1 year 23 weeks old
Secunia Advisories
- [2/5] IBM HTTP Server "mod_proxy_ftp" Cross-Site Scripting Vulnerability 1 year 28 weeks old
- [2/5] IBM WebSphere Application Server "PerfServlet" Information Disclosure 1 year 28 weeks old
- [2/5] Sun Solaris / SEAM Kerberos PAM Module Privilege Escalation 1 year 28 weeks old
- [2/5] Sun Java System Directory Server Directory Proxy Server Denial of Service 1 year 28 weeks old
- [3/5] Swann DVR4-SecuraNet Directory Traversal Vulnerability 1 year 28 weeks old
- [3/5] Free Joke Script Multiple SQL Injection Vulnerabilities 1 year 28 weeks old
- [3/5] PHP Krazy Image Host Script "id" SQL Injection Vulnerability 1 year 28 weeks old
- [2/5] UniversalIndentGUI "SettingsPaths::init()" Insecure Temporary Files 1 year 28 weeks old
- [1/5] Gentoo update for valgrind 1 year 28 weeks old
- [2/5] Openfiler "redirect" Cross-Site Scripting Vulnerability 1 year 28 weeks old
Emerging Threats News
- OISF Receives Funding for Open Source Next Generation IDS/IPS 1 year 46 weeks old
- Weekly New Signatures October 11 2008 1 year 46 weeks old
- IPTables Update Script 1 year 47 weeks old
- Weekly New Signatures October 4 2008 1 year 47 weeks old
- FWSnort in ISSA 1 year 47 weeks old
- Weekly New Signatures September 28 2008 1 year 48 weeks old
- New Compromised Hosts Ruleset Source 1 year 49 weeks old
- Atrivo Offline!!! 1 year 49 weeks old
- Weekly New Signatures September 20 2008 1 year 49 weeks old
- ASPack/ASProtect Packed Binary Sig, TinyPE 1 year 49 weeks old
360 Security
Canadian InfoSec News
Cisco Security Notices
Cisco Security Responses
DVLabs: News
DVLabs: Upcoming Advisories
Incidents List
milw0rm.com
OpenPacket.org Capture Repo
PhishTank Blog
Politech Mailing List
SearchSecurity: Threat Monitor
Technically Secure
The Academy
The Dark Visitor
US-CERT Current Activity
Vulnerability Development Mailing List
VulnWatch
WatchGuard Wire
Websense Security Labs
Wired Security
Wired Security Matters
