Skip to content

Gotham Security Daily Threat Alerts

by on April 26, 2013

April 24, The H – (International) WordPress cache plugins enabled remote PHP execution. WordPress posted details of a previously reported vulnerability in the WP Super Cache and W3 Total Cache plugins that allowed remote users to execute arbitrary PHP on servers. Source: http://www.h-online.com/security/news/item/WordPress-cache-plugins-enabled-remote-PHP-execution-1848961.html

April 24, Softpedia – (International) Number of DDOS attacks increased by 200% in 2012, study shows. Akamai’s fourth quarter 2012 State of the Internet report found that distributed denial of service (DDoS) attack increased by 200% compared to 2011, and detailed other DDoS findings. Source: http://news.softpedia.com/news/Number-of-DDOS-Attacks-Increased-by-200-in-2012-Study-Shows-348170.shtml

April 24, Softpedia – (International) Vernot trojan avoids detection using blogging platform for C&C communications. Researchers at Trend Micro found a new variant of the Vernot trojan, BKDR_VERNOT.B, which utilizes a blogging platform to disguise its command and control (C&C) traffic. Source: http://news.softpedia.com/news/Vernot-Trojan-Avoids-Detection-by-Using-Blogging-Platform-for-C-C-Communications-348123.shtml

April 24, Softpedia – (International) VideoLAN’s downloads section hit by DDoS attack. A distributed denial of service (DDoS) attack against the download infrastructure of VideoLAN began April 23 and continued into April 24, but did not down the site. Source: http://news.softpedia.com/news/VideoLAN-s-Downloads-Section-Hit-by-DDOS-Attack-4-24-2013-348040.shtml

April 23, Forbes – (International) Researcher’s serial port scans find more than 100,000 hackable devices, including traffic lights and fuel pumps. A researcher from Rapid7 presented findings to the Infosec Southwest conference detailing how attackers could compromise various older devices that utilize serial ports connected to networking equipment. He found that devices set up in this manner had poor security and control varied operations including heating and cooling systems, point-of-sale (PoS) devices, and fuel pumps, among others.
Source: http://www.forbes.com/sites/andygreenberg/2013/04/23/researchers-serial-port-scans-find-more-than-100000-hackable-devices-including-traffic-lights-and-fuel-pumps/

April 23, Help Net Security – (International) Exploit for recently patched Java flaw added to CrimeBoss exploit kit. The popular CrimeBoss exploit kit was updated to include a Java exploit that was recently patched to allow the exploit kit to target unpatched systems. Source: http://www.net-security.org/secworld.php?id=14798

April 23, SC Magazine – (International) Latest Gozi trojan variant comes packaged with rootkit. The latest version of the Gozi banking malware now includes a difficult to extract rootkit that infects the master boot record (MBR) and injects itself into Internet Explorer upon launch to steal banking information. Source: http://www.scmagazine.com/latest-gozi-trojan-variant-comes-packaged-with-rootkit/article/289987/

April 23, Computerworld – (International) Microsoft re-releases ‘Blue Screen of Death’ patch. Microsoft reissued a patch that previously crashed some users’ systems and sent the PCs into an endless reboot cycle. Source: http://www.networkworld.com/news/2013/042313-microsoft-re-releases-39blue-screen-of-269033.html

April 23, Reuters – (International) Cyber attack briefly shutters Charles Schwab website. A distributed denial of service (DDoS) attack against Charles Schwab Corp shut down the company’s Web site and mobile applications for around 2 hours April 23. Source: http://articles.chicagotribune.com/2013-04-23/business/sns-rt-us-schwab-websitebre93m1dv-20130423_1_website-denial-of-service-attack

From → Security

Comments are closed.

%d bloggers like this: