About :: Members :: Projects :: Keen Veracity :: Buy Stuff! :: Contact :: Mailing List :: Binary Bombermen

Current News

Update! Update!
Posted by Digital Ebola @ Wednesday 29th 2009f July 2009 04:04:31 PM
It seems that many of us will be at Defcon. Looking forward to the trip, as it should be informative and entertaining.

 
 


Latest Advisories

Microsoft

SecurityFocus Vulnerabilities

  • Vuln: Multiple Vendor TLS Protocol Session Renegotiation Security Vulnerability
  • Vuln: Sun Java SE November 2009 Multiple Security Vulnerabilities
  • Vuln: Oracle 11gR2 Remote Command Execution Vulnerability
  • Vuln: Linux Kernel 'drivers/scsi/gdth.c' Local Privilege Escalation Vulnerability
  • Bugtraq: [security bulletin] HPSBUX02503 SSRT100019 rev.1 - HP-UX Running Java, Remote Increase in Privilege, Denial of Service and Other
  • Bugtraq: RE: Samba Remote Zero-Day Exploit

    CERT Coordination Center

  • TA10-021A: Microsoft Internet Explorer Vulnerabilities
  • SB10-018: Vulnerability Summary for the Week of January 11, 2010
  • TA10-013A: Adobe Reader and Acrobat Vulnerabilities
  • TA10-012B: Microsoft Windows EOT Font and Adobe Flash Player 6 Vulnerabilities
  • TA10-012A: Oracle Updates for Multiple Vulnerabilities
  • SB10-011: Vulnerability Summary for the Week of January 4, 2010
  • SB10-004: Vulnerability Summary for the Week of December 28, 2009
  • SB09-362: Vulnerability Summary for the Week of December 21, 2009
  • SB09-355: Vulnerability Summary for the Week of December 14, 2009
  • SB09-348: Vulnerability Summary for the Week of December 7, 2009

    Packetstorm

    HPSBUX02503-SSRT100019.txt

    MDVSA-2010-034.txt

    nightdahack2010-cfp.txt

    CORELAN-10-010.txt

    wsnguestdb-disclose.txt

    bluedove-sql.txt


    News and Discussion

    SecurityFocus

  • News: Twitter attacker had proper credentials
  • News: PhotoDNA scans images for child abuse
  • News: Conficker data highlights infected networks
  • News: Popular apps need better patching, says report
  • Brief: Google offers bounty on browser bugs
  • Brief: Cyberattacks from U.S. "greatest concern"
  • Brief: Microsoft patches as fraudsters target IE flaw
  • Brief: Attack on IE 0-day refined by researchers
  • News: Most consumers reuse banking passwords
  • News: CIA, PayPal under bizarre SSL assault
  • News: Malicious traffic can crash routers, Juniper warns
  • News: Scammers scrape RAM for bank card data

    Cisco

  • Cisco, NetApp and VMware Collaborate to Deliver New Capabilities for the Dynamic Data Center
  • Cisco and Kuwait's Public Authority for Applied Education and Training Agree on Working Template for Education Development
  • Cisco Delivers Superior Blend of Protection and Productivity at Baltika
  • Cisco: Social Media Newest Playground for Cybercriminals
  • Cisco Completes Acquisition of ScanSafe, Leading SaaS Web Security Provider

    BugTraq Mailing List

  • [CORE-2010-0121] Multiple Vulnerabilities with 8.3 Filename Pseudonyms in Web Servers
  • [Hacking Event] Night Da Hack 2010 : Call For Proposals
  • JDownloader Remote Code Execution
  • Re: Samba Remote Zero-Day Exploit
  • Re: Samba Remote Zero-Day Exploit
  • Re: Samba Remote Zero-Day Exploit
  • RE: Samba Remote Zero-Day Exploit
  • Re: Samba Remote Zero-Day Exploit
  • [security bulletin] HPSBUX02503 SSRT100019 rev.1 - HP-UX Running Java, Remote Increase in Privilege, Denial of Service and Other
  • [security bulletin] HPSBMA02487 SSRT100024 rev.1 - HP Operations Agent Running on Solaris 10, Remote Unauthorized Access
  • [ MDVSA-2010:034 ] kernel
  • Re: [Full-disclosure] Samba Remote Zero-Day Exploit
  • Re: [Full-disclosure] Samba Remote Zero-Day Exploit
  • Re: Samba Remote Zero-Day Exploit
  • Re: Samba Remote Zero-Day Exploit

    Vuln-Dev Mailing List

    InfoWorld Security

  • IBM sees Conficker hitting 4 percent of PCs
  • Hackers seize on 0-day flaw in Microsoft's PowerPoint
  • IBM continues push for Sun, but will the deal kill Solaris?
  • Bill would give feds role in private sector cybersecurity
  • Conficker may be more widespread than previously thought
  • Forrester now says '09 U.S. IT spend to drop 3.1 percent
  • Conficker activation passes quietly, but threat isn't over
  • Gartner: IT spending drop-off worse than after dot-com bust
  • China denies cyberespionage charges
  • Fake security software scammers jump on Conficker

    CNET News.com on Security

  • Verizon temporarily blocks some 4chan sites
  • Security software maker Vitamin D exits beta
  • China breaks up Black Hawk hacking ring
  • PCI compliance: What it is and why it matters (QA)
  • New UI, features highlight McAfee 2010 suites
  • BlackBerry has spyware risk too, researcher says
  • Mozilla yanks infected add-ons, warns users
  • Caught on tape: Pastry thief and a bad dog walker
  • DOJ not pleased with latest Google Book agreement
  • Microsoft to patch 26 holes in Windows, Office

    Computerworld Security News

  • Poughkeepsie, N.Y., slams bank for $378,000 online theft
  • Adobe apologizes for 16-month-old Flash bug
  • PC Maintenance: What Tasks When?
  • An open letter to my public transit company
  • Why CSOs Should Care About ShmooCon
  • Malwarebytes' Anti-Malware Free

    Internet Storm Center

    Oracle has an unscheduled security alert and patch for CVE-2010-0073. The issue affects WebLogic Server and is remotely exploitable. Details and patch are here http://www.oracle.com/technology/deploy/security/alerts/alert-cve-2010-0073.html
    Infocon: green



  • Trend Micro










    Hate Comcast? Use the banner!