Daily Security News

Recent Posts

Trustico emails ~20K SSL certificate private keys to Digicert

Posted

Digicert revokes ~20K Trustico SSL certificates after Trustico emailed the private keys to Digicert. Digicert statement

Google groups archive


Read more...


Hacker wipes spyware companies servers, again

Posted

Vigilante hacker hacks spyware company for the second time and wipes their servers, again


Read more...


Macupdate downloads distributing cryptominer

Posted

The Mac OS app hosting website MacUpdate was compromised and hosted binaries modified to include a cryptocurrency miner. This hilights the risk of downloading program binaries from 3rd party websites. Always only ever download apps from official app stores or developers websites and take steps to verify authenticity! Most attackers when trojaning binaries in the past havn’t bothered to modify hashsums or GPG signatures.


Read more...


CVSS 10 rated RCE in Cisco ACA WebVPN

Posted

There’s a CVSS 10 rated (the worst you can get) RCE in Cisco ASA WebVPN services. Cisco Advisory You better have a Cisco TAC/Support contract in order to get this patch, or just disable the WebVPN altogeather. There are no other work arounds.


Read more...


Cryptocurrency ads show up on youtube

Posted

Youtube gets in on the “serving up cryptocurrency miners with ads” action. A solution to this problem is to use one of those raspberry pi’s you have in a drawer somewhere and run Pi-Hole to block ads on a DNS level for your entire network..


Dark Caracal: Nation state APT targeting multiple platforms and industries

Posted

EFF and Lookout Security have published a report on a nation state APT targeting various industries and individuals with malware. Initial infection vectors are phishing via malicious documents and IM’s with links to either phishing sites or water hole sites that host trojanised versions of popular Android apps. A java RAT (CrossRAT) was used for Windows/Linux/OS X victims.


Read more...


RCE in Seagate NAS's

Posted

Unauthenticated remote code exection on Seagate Personal Cloud Home Media Storage NAS devices.


Writeup on how Chrome extensions can be a security nightmare.

Posted

Technical post by ICEBERG on finding a malicious chrome extension.


Read more...


Modsecurity v3.0 release

Posted

Trustwave has just announced the release of ModSecurity v3.0 Now more modular!

libModSecurity aka ModSecurity version 3.0 is out there. libModSecurity starts a new era in terms of ModSecurity extensibility. The modular architecture provides flexibility to extend ModSecurity core with scripting languages and from scripting languages. Facilitating work such as: UI integration, integration with other WAF products, other security products in general, including the ability to process the rules even without a web server.


Read more...