Skip to content

Gotham Security Daily Threat Alerts

by on August 8, 2014

August 7, Help Net Security – (International) Symantec issues update fixing Endpoint Protection zero-day. Symantec issued a patch for its Symantec Endpoint Protection (SEP) security solution to address a zero-day vulnerability identified by Offensive Security researchers that could allow an attacker with access to the target computer to escalate admin privileges or cause a denial of service (DoS) situation. The vulnerability can not be exploited remotely but the exploit code is publicly available. Source: http://www.net-security.org/secworld.php?id=17218

August 7, Softpedia – (International) OpenSSL receives nine security fixes. A new version of the OpenSSL library was released, closing nine security vulnerabilities identified by researchers from various organizations. The vulnerabilities could lead to information leaking, downgrading to lower versions of the security protocol, or denial of service (DoS) attacks. Source: http://news.softpedia.com/news/OpenSSL-Receives-Nine-Critical-Fixes-453932.shtml

August 7, Softpedia – (International) US Plextor website hacked by CoMoDo Islamic hackers. Attackers identifying themselves as the CoMoDo group defaced the Web site of computer hardware manufacturer Plextor Americas. The company stated that they are investigating the incident. Source: http://news.softpedia.com/news/US-Plextor-Website-Hacked-by-CoMoDo-Islamic-Hackers-453960.shtml

August 7, Softpedia – (International) WordPress and Drupal fix common PHP XML parser vulnerability. WordPress and Drupal released new versions of their respective products in a joint effort to close an XML processing vulnerability that existed in both services and could be used by attackers to perform denial of service (DoS) attacks. The vulnerability was reported by a researcher at Salesforce.com and affected over 250 million Web sites according to Incapsula researchers. Source: http://news.softpedia.com/news/WordPress-and-Drupal-Fix-Common-PHP-XML-Parser-Vulnerability-453888.shtml

August 6, Securityweek – (International) APT group hijacks popular domains to mask C&C communications: FireEye. Researchers with FireEye reported identifying an advanced persistent threat campaign dubbed “Poisoned Hurricane” that used a variant of the PlugX (Kaba) malware configured to resolve DNS lookups through the nameservers of Hurricane Electric, which then spoofed legitimate domains and IP addresses to disguise the malware’s communication with command and control (C&C) servers. Source: http://www.securityweek.com/apt-group-hijacks-popular-domains-mask-cc-communications-fireeye

August 6, Softpedia – (International) Twitter URL shortening service abused by spammers. Cloudmark researchers reported that the t.co URL shortening service used by Twitter was used in 54 percent of shortened links blacklisted by the company for use in spam campaigns, and that one entity appeared to be behind two observed campaigns abusing the service, among other findings. Source: http://news.softpedia.com/news/Twitter-URL-Shortening-Service-Abused-by-Spammers-453832.shtml

From → Security

Comments are closed.

%d bloggers like this: