Previous
Attacker attempts to plant Trojan in Linux
News An intruder apparently compromised one server earlier, and the attacker used his access to make a small change to one of the source code files, McVoy said. A critical security flaw was found in CVS in January, but it's unknown whether the attacker...
[November 7, 2003, 7:39]
Debian attacker may have used new exploit
News Initial investigations of the security breach, which occurred on 19 November, indicate that the attacker was able to gain full control of Debian servers after logging on via unprivileged accounts, known as privilege escalation, according to James...
[November 28, 2003, 14:05]
The Attacker Within: How Hackers Are Targeting Enterprise Networks From the Inside-Out
White Papers Convincing a trusting employee to visit a website is all that an attacker needs to do in order to access valuable data deep within a secure network. As enterprise defenses evolve, so too do the attack vectors leveraged by those seeking to bypass...
[October 6, 2009, 0:00]
Debian attacker may have used new exploit
Talkback > The exploit was carried out on Debian software running on Intel-based hardware, while a system using Sun hardware was not affected, leading some to guess that Sun software is not affected by the possible exploit.
[December 2, 2003, 12:28]
Alleged CastleCops attacker charged
News A man has been arrested and charged with launching denial-of-service attacks against two organisations, one of which was voluntary security community CastleCops. Greg King was arrested on Monday morning following an extensive investigation by the...
[October 4, 2007, 17:39]
Google toolbar exposes PCs to attack
News An Israeli security firm has discovered a security vulnerability in Google's Internet Explorer toolbar that could allow an attacker to run malicious code on a user's PC, read private files, and carry out other intrusions.
[August 9, 2002, 11:26]
Block OS fingerprinting on Linux/UNIX systems
White Papers When an attacker attempts to penetrate a targeted Linux/UNIX system, the first task involved is usually to discover which OS the system is running and then compromise it with known exploits. If you can thwart an attacker from identifying the OS...
[May 16, 2006, 4:36]
Microsoft plugs critical holes in Windows
News Microsoft on Tuesday issued patches for critical holes in all supported versions of Windows that could allow an attacker to take over a system by executing code remotely if the user viewed a maliciously crafted image file.
[March 11, 2009, 8:03]
Nokia admits multiple Bluetooth security holes
News Nokia has admitted that some of its Bluetooth-enabled mobile phones are vulnerable to "bluesnarfing", which is where an attacker could read, modify and copy a phone's address book and calendar without leaving any trace of the intrusion.
[February 9, 2004, 16:50]
Bluetooth phones at risk from 'snarfing'
News A security flaw has been discovered in Bluetooth that lets an attacker download all contact details along with other information from a vulnerable phone, while leaving no trace of the attack. Unlike bluejacking, which is where users can send a...
[February 9, 2004, 13:15]
Microsoft, researcher clash over security patch
News On Tuesday, Microsoft released a patch for a hole in Windows 2000 and Server 2003 and 2008 that could allow an attacker to redirect network traffic to a malicious site that has been set to serve as a proxy.
[March 16, 2009, 7:33]
Check Point warns firewall can be breached
News Two flaws in Check Point Software's flagship firewall software could allow an attacker to crash or compromise its firewall products, the company said on Wednesday. If [an attacker] can control all the data going in and out -- really, the game is...
[February 5, 2004, 7:30]
Flaw harbours Slammer potential
News A research company warned on Tuesday that an attacker could use a recently patched Microsoft flaw to create a fast-moving worm similar to SQL Slammer, which spread rapidly across the Internet a year ago.
[December 10, 2003, 7:30]
Apple readies patch for iPhone SMS flaw
News Apple expects to have a fix later this month for a vulnerability in the iPhone that could allow an attacker to gain control of the device remotely via SMS, a security researcher said on Thursday. An attacker could exploit a weakness in the way...
[July 3, 2009, 8:36]
Apple QuickTime gets critical security update
News Apple has issued a critical security update for QuickTime media player, aimed at resolving vulnerabilities that could potentially allow a malicious attacker to take control of a person's computer, according to an Apple advisory released this week.
[January 26, 2009, 15:35]
Researchers take control of iPhone via SMS
News An attacker could exploit the hole to make calls, steal data, send text messages, and do more or less anything a person can do on their iPhone, researchers Charlie Miller and Collin Mulliner told ZDNet UK's sister site CNET News.com at the Black...
[July 30, 2009, 11:11]
August Windows patches arrive
News Microsoft has issued alerts on several security flaws in Windows, the most serious of which could allow an attacker to gain control over a computer. An attacker could commandeer a PC by crafting a malicious image and tricking the victim to look at...
[August 10, 2005, 9:10]
Flaw exposes Chrome, Firefox to clickjacking
News Security researchers have discovered a flaw affecting Google's Chrome browser that exposes it to clickjacking — where an attacker hijacks a browser's functions by substituting a legitimate link with a link of the attacker's choice.
[January 29, 2009, 7:43]
Cisco flaw threatens Wi-Fi networks
News A security bug in Cisco's wireless LAN controllers could enable an attacker to send malicious traffic to a secured Wi-Fi network. An attacker could exploit the flaw to send malicious traffic to a wireless network that is designed to be secure, the...
[November 3, 2005, 11:05]
Apple plugs iPhone SMS hole
News Apple has plugged an SMS flaw that could enable an attacker to take complete control over an iPhone. Researchers Charlie Miller and Collin Mulliner said at the Black Hat security conference that an attacker could use the SMS exploit to make calls...
[August 3, 2009, 8:52]
