Archive for the 'Vulnerabilities' Category

Australia’s finally realizing the threats of cyber attacks to the country’s government institutions and business sector, which were attacked dozens of times this year, and now it’s raising concerns about the safety of personal and financial data of users.
A hacker’s website tells about numerous security breaches of government websites. Although it doesn’t say anything about […]

Recently Microsoft announced that it would release necessary patches for a vulnerability related to the URI (uniform resource identifier) protocol handling technology. The problem lies in the way applications, such as Adobe Acrobat, are executed by browsers. Even though Microsoft's original stance was that the creators of applications in question should be held accountable for […]

Military and governmental systems use the Citrix technology to put up GUIs. Seemingly not a problematic fact, apart from the recently acknowledged conviction that the Citrix Technology has, as the man behind nailing the problems, Petko D. Petkov, said, "holes you could drive a bus through."
Petko D. Petkov, more commonly known as "pdp" was on […]

Sun Microsystems, the company behind Java Runtime Environment (JRE), has released an update that fixes many security flaws, indluding some that could allow hackers to compromise or steal data from unpatched systems.
Java has long been known to be a means for e-criminals' to further their cause, since  an  estimated  600  million users worldwide use JRE. […]

The recently infamous 13 month old QuickTime flaw, which Apple failed to patch in March, has finally been taken care of in Quicktime version 7.2. The update fixes the flaw, which exists in Windows XP and Windows Vista. Apple did not specifically address the question, why they took so long, but before the explanation of […]

Although China has been accused of government-backed attacks (against New Zealand in particular), China itself has been attacked: one of the country's internet security sites (or at least a few pages of it) contains malicious code. The particular malicious code in the website is an iFrame, or a hidden window, which allows code such as […]

Certain modems, used by Eircom customers, are vulnerable to Wired Equicalent Privacy (WEP) software exploits. These exploits may allow outsiders to access private wireless connections by geting past the default setting of the WEP. The flaw exists in the WEP key used for Netopia 2247 and 3300 routers.
“The security issue involves a possible vulnerability with […]

Secret update from Microsoft provoked anger and debates two weeks ago. It was a matter of honesty, but not a deal of possible security threat. And the discussion ran on either Microsoft had a right to update systems automatically. However, according to the new report, the stealth update might be dangerous for those that have […]

Even though Apple’s new product, The iPhone, is yet to be compromised by security risks, there are potential ways hackers can use to do so.

Marius Van Oers, a security researcher for McAffe, has made a presentation in a security conference held in Vienna explaining a few ways that could be used to infect the iPhone.

The […]

Perko Petrov, an independent security researcher, has found a new Firefox exploit. The existence of the flaw is due to the way that Firefox and Quicktime work together. If the computer is unpatched, the exploit could allow privileged code to run and access data.
According to Petrov, code could be run on systems that allow attackers […]