Skip to content

Gotham Security Daily Threat Alerts

by on December 3, 2014

December 2, Associated Press – (International) FBI investigating Sony Pictures hack possibly linked to leaked footage of ‘Annie,’ Mr. Turner’ movies. Sony Pictures Entertainment issued a statement December 1 confirming that the company is continuing to respond to issues created by a cyberattack that occurred during the week of November 24. The FBI confirmed that the agency is investigating the incident. Source: http://www.newsday.com/entertainment/movies/fbi-investigating-sony-pictures-hack-1.9672119

December 2, Securityweek – (International) OpenVPN versions released since 2005 affected by critical flaw. The developers of the open-source virtual private network software OpenVPN released a new version of the software to address a critical denial of service (DoS) vulnerability which could allow authenticated attackers to cause servers to crash. The vulnerability affects all OpenVPN 2.x versions released since 2005 as well as OpenVPN Access Server versions prior to version 2.0.11. Source: http://www.securityweek.com/openvpn-versions-released-2005-affected-critical-flaw

December 2, Securityweek – (International) Mozilla fixes vulnerabilities, disables SSL 3.0 in Firefox 34. Mozilla released the latest version of its Firefox browser, Firefox 34, closing three critical vulnerabilities and five others, as well as disabling Secure Sockets Layer (SSL) 3.0 support to protect users against POODLE attacks. Source: http://www.securityweek.com/mozilla-fixes-vulnerabilities-disables-ssl-30-firefox-34

December 1, Securityweek – (International) XSS vulnerability in Alcatel-Lucent carrier-grade switches. Researchers from Swisscom’s Computer Security Incident Response Team (CSIRT) released details of a cross-site scripting (XSS) vulnerability in the Alcatel-Lucent 1830 Photonic Service Switch equipment for cable multiple-system operator (MSO) networks following the disclosure of the vulnerability June 13. Alcatel-Lucent stated that the vulnerability was not considered a high-priority issue. Source: http://www.securityweek.com/xss-vulnerability-found-alcatel-lucent-carrier-grade-switches

From → Security

Comments are closed.

%d bloggers like this: