Tootella
Les news du libre

Dark Reading

• Researchers Propose New Approach to Address Online Password-Guessing Attacks
• Attack Campaign Experiments with Rapid Changes in Email Lure Content
• Human Negligence to Blame for the Majority of Insider Threats
• Why Cybersecurity Burnout Is Real (and What to Do About It)
• New Free Tool Scans for Chrome Extension Safety
• Cyber Extortionists Can Earn $360,000 a Year
• Security Analysts Are Only Human
• Insurer Offers GDPR-Specific Coverage for SMBs
• As Businesses Move Critical Data to Cloud, Security Risks Abound
• POS Vendor Announces January Data Breach

Brèves HSC

• [89] DANE et les attaques par rejeu
• [88] Préqualification Nuit du Hack 2012 - Write-up 4005
• [86] Analyse du protocole Microsoft SSTP
• [85] Oracle 11 et l'authentification
• [84] Obtenir les clés SSL en mémoire d'un processus
• [83] Etendre les fonctionnalités de nmap et réaliser un scan au niveau applicatif
• [82] Brève sur les interfaces RPC Windows
• [81] Brève sur WMI (Windows Management Instrumentation)
• [80] Malwar(e)
• [79] Retour sur la vulnérabilité CVE-2008-1930 dans Wordpress

Bugtraq

• Vuln: Opencontainers runc CVE-2019-5736 Local Command Execution Vulnerability
• Vuln: Cisco Webex Meetings Online CVE-2019-1680 Security Bypass Vulnerability
• Vuln: WPA2 Key Reinstallation Multiple Security Weaknesses
• Vuln: Intel Data Center Manager SDK CVE-2019-0112 Denial of Service Vulnerability
• Bugtraq: [SECURITY] [DSA 4269-1] postgresql-9.6 security update
• Bugtraq: [SECURITY] [DSA 4268-1] openjdk-8 security update
• Bugtraq: [SECURITY] [DSA 4267-1] kamailio security update
• Bugtraq: [CVE-2018-12584] Heap overflow vulnerability in reSIProcate through 1.10.2
• More rss feeds from SecurityFocus

Cisco Security

• Holiday shopping, hackers and cybersecurity
• VIDEO: Cisco and Ericsson Partner to Accelerate Digital Transformation
• Ericsson and Cisco Partner to Create the Networks of the Future
• Cisco Announces Intent to Acquire Lancope
• nc Simplifies OTT With Cisco Virtualized Video Processing
• Cisco and Accenture Extend Global Alliance to Brazil to Help Clients Expand Business Opportunities, Reduce Costs and Improve Productivity
• Cisco Midyear Security Report Reveals Sophisticated Cyberattacks Are Defining the Innovation Race between Adversaries and Defenders
• Cybersecurity Innovation Race: 3 Things You Need to Know
• Why That Home Network Will Really Matter to you Today
• How Will Smart Cities Defend Against Hackers?

ImperViews

• Big Data Needs Big Security. Here’s Why.
• GDPR Series, Part 1: Does the GDPR Apply to You?
• How to Run a Database Vulnerability Scan with Scuba
• Deception-based Ransomware Detection: What It Is and Why You Need it
• Top 3 Reasons to Include Data Masking in Your Data Security Strategy
• A CISO’s Take on Phishing Prevention, Layered Security, and Managing Insider Threats

Schneier on Security

• Reverse Location Search Warrants
• Details on Recent DNS Hijacking
• Estonia's Volunteer Cyber Militia
• I Am Not Associated with Swift Recovery Ltd.
• Cataloging IoT Vulnerabilities
• Friday Squid Blogging: Sharp-Eared Enope Squid
• Reconstructing SIGSALY
• USB Cable with Embedded Wi-Fi Controller
• Cyberinsurance and Acts of War
• Blockchain and Trust

Threatpost

• ‘Magic’ Espionage Malware hits Thousands of UK Computers
• Comment Crew Malware is After Drone Technology
• ACLU Asks FTC to Investigate Carriers’ Lack of Android Security Updates
• Geer, Thieme: Specialization and Institutionalization Have Transformed Security
• Oracle Patches 42 Java Flaws, Adds New Code-Signing Restrictions and Warnings
• Move Over Conficker, Web Threats are Top Enterprise Risk
• DevOps Integration Key to Avoiding Pre-Ordained Security Failures
• Bruce Schneier on the Boston Marathon Bombing and the Psychology of Fear
• NQ Mobile: Android Malware Doubled in 2012
• Linode Hacked Through ColdFusion Zero Day

Liens:  Blog | Webmaster | Depuis 1999...