Home Admin

Admin

New record DDoS attack with 1.35 terabits hits Github

According to wired, Github was hit with 1.35 terabits traffic on wednesday at 12:15 pm (ET). This incredible powerful DDoS originated from over 100,000 memcached servers that are currently exposed on the web. The attack was mitigated by Akamai this time. You can find more information on Wired.

Short-News: Critical Oracle Java 7/8 patch for CVE-2016-0636 (remote code execution)

Oracle released a critical patch for Java 7/8 which patches CVE-2016-0636 – a remote code execution. This is a patch which has been released between two normal Oracle Java “Patch-Days”. This should be enough proof that the vulnerability is indeed critical. To quote Oracle: Due to the severity of this vulnerability and the public disclosure of […]

Short News: Critical vulnerability in Network Security Services (nss-util) – CVE-2016-1950

It has been discovered that the nss-util (Network Security Services) is affected by a critical vulnerability. Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and server applications. A heap-based buffer overflow flaw was found in the way NSS parsed certain ASN.1 structures. An attacker could use […]

Short News: Transmission contains malware, many others contain a vulnerability.

This time only a short roundup on two Mac OS X app problems. If you’re into BitTorrent and you’re using a Mac, you’ll most likely know “Transmission“. An user reported that a Keylogger was found in his download. An in-depth research about the transmission KeRanger infection has been released by paloalto networks. The following statement […]

SSLv2 Protocol “DROWN” security flaw – CVE-2016-0800

As announced by the OpenSSL team some days ago, a new fix for several high severe vulnerabilities have been released. The main vulnerability is called “DROWN” (once again with a fancy logo, of course). Detailed information can be found on www.drownattack.com CVSS V2 Base Score 5.8 Base Metrics AV:N/AC:M/Au:N/C:P/I:P/A:N Access Vector Network Access Complexity Medium Authentication […]

Tricky spam – real message forward with passworded mail attachment

Well folks: It’s getting tricky. When I wrote about CTB-Locker, I joked around that everyone warned their users about suspicious attachments anyway. Now attackers use a new method to get around virus scanners and get their victims to open their infected files. The initial notice came from Heise with a German mail – and the notice […]

Short News: Incoming OpenSSL patch – release of version 1.0.2g/1.0.1s

The incoming release of OpenSSL versions – has just been announced on the OpenSSL mailing list. As usual on such release pre-notifications there ain’t many details known. These releases will be made available on 1st March 2016 between approximately 1300-1700 UTC. They will fix several security defects with maximum severity “high”. – OpenSSL Announcement Please […]

Crypto-trojan CTB-Locker infects hundred webservers

We know… you can’t hear the word “crypto-trojan” anymore. We know… you’ve informed all your users already. But hold a second. This time it’s something different. This time the admins have to watch out. CTB-Locker is a trojan which infects webservers. It’s a small PHP script which seems to crypt all your webservers files. It […]

CVE-2016-2384: arbitrary code execution due to a double-free in the usb-midi linux kernel driver

CVE-2016-2384 describes an interesting vulnerability within the usb-midi linux kernel driver. There is an extensive blog post on xairy’s github blog. The exploit can be either used for DOS (you’ll need physical access) or to execute code (you’ll need both physical and local access).   CVE-2016-2384 CVSS v2 Base Score 4.7 Base Metrics AV:L/AC:M/Au:N/C:N/I:N/A:C Access Vector Local […]

Short News: Hacked Linux Mint ISOs

Linux Mint is one of the most popular desktop distributions for Linux. They’ve announced in their blog that the Linux Mint 17.3 Cinnamon edition ISOs had been replaced with a ⚠️ “hacked” version on 20th February 2016 for a short amount of time. Right now the Linux Mint website is not reachable – looks like they’re properly […]