Tootella
Les news du libre

Dark Reading

• Stuxnet Family Tree Grows
• Google File Cabinet Plays Host to Malware Payloads
• Demonstration Showcase Brings DevOps to Interop19
• City of Stuart Still Recovering from Ryuk Ransomware Attack
• App Exposes Wi-Fi Credentials for Thousands of Private Networks
• Exploits for Adobe Vulnerabilities Spiked in 2018
• When Every Attack Is a Zero Day
• Will the US Adopt a National Privacy Law?
• 7 Ways to Get the Most from Your IDS/IPS
• 1 in 4 Workers Are Aware Of Security Guidelines - but Ignore Them

Brèves HSC

• [89] DANE et les attaques par rejeu
• [88] Préqualification Nuit du Hack 2012 - Write-up 4005
• [86] Analyse du protocole Microsoft SSTP
• [85] Oracle 11 et l'authentification
• [84] Obtenir les clés SSL en mémoire d'un processus
• [83] Etendre les fonctionnalités de nmap et réaliser un scan au niveau applicatif
• [82] Brève sur les interfaces RPC Windows
• [81] Brève sur WMI (Windows Management Instrumentation)
• [80] Malwar(e)
• [79] Retour sur la vulnérabilité CVE-2008-1930 dans Wordpress

Bugtraq

• Vuln: Palo Alto Networks Global Protect Client CVE-2019-1573 Local Information Disclosure Vulnerability
• Vuln: PHP Multiple Heap Buffer Overflow Vulnerabilities
• Vuln: OpenSSL CVE-2019-1559 Information Disclosure Vulnerability
• Vuln: ISC BIND CVE-2018-5745 Remote Denial of Service Vulnerability
• Bugtraq: [SECURITY] [DSA 4269-1] postgresql-9.6 security update
• Bugtraq: [SECURITY] [DSA 4268-1] openjdk-8 security update
• Bugtraq: [SECURITY] [DSA 4267-1] kamailio security update
• Bugtraq: [CVE-2018-12584] Heap overflow vulnerability in reSIProcate through 1.10.2
• More rss feeds from SecurityFocus

Cisco Security

• Holiday shopping, hackers and cybersecurity
• VIDEO: Cisco and Ericsson Partner to Accelerate Digital Transformation
• Ericsson and Cisco Partner to Create the Networks of the Future
• Cisco Announces Intent to Acquire Lancope
• nc Simplifies OTT With Cisco Virtualized Video Processing
• Cisco and Accenture Extend Global Alliance to Brazil to Help Clients Expand Business Opportunities, Reduce Costs and Improve Productivity
• Cisco Midyear Security Report Reveals Sophisticated Cyberattacks Are Defining the Innovation Race between Adversaries and Defenders
• Cybersecurity Innovation Race: 3 Things You Need to Know
• Why That Home Network Will Really Matter to you Today
• How Will Smart Cities Defend Against Hackers?

ImperViews

• Big Data Needs Big Security. Here’s Why.
• GDPR Series, Part 1: Does the GDPR Apply to You?
• How to Run a Database Vulnerability Scan with Scuba
• Deception-based Ransomware Detection: What It Is and Why You Need it
• Top 3 Reasons to Include Data Masking in Your Data Security Strategy
• A CISO’s Take on Phishing Prevention, Layered Security, and Managing Insider Threats

Schneier on Security

• G7 Comes Out in Favor of Encryption Backdoors
• Excellent Analysis of the Boeing 737 Max Software Problems
• Friday Squid Blogging: New Squid Species off the New Zealand Coast
• Iranian Cyberespionage Tools Leaked Online
• New DNS Hijacking Attacks
• A "Department of Cybersecurity"
• More on the Triton Malware
• Vulnerabilities in the WPA3 Wi-Fi Security Protocol
• China Spying on Undersea Internet Cables
• Friday Squid Blogging: Detecting Illegal Squid Fishing with Satellite Imagery

Threatpost

• ‘Magic’ Espionage Malware hits Thousands of UK Computers
• Comment Crew Malware is After Drone Technology
• ACLU Asks FTC to Investigate Carriers’ Lack of Android Security Updates
• Geer, Thieme: Specialization and Institutionalization Have Transformed Security
• Oracle Patches 42 Java Flaws, Adds New Code-Signing Restrictions and Warnings
• Move Over Conficker, Web Threats are Top Enterprise Risk
• DevOps Integration Key to Avoiding Pre-Ordained Security Failures
• Bruce Schneier on the Boston Marathon Bombing and the Psychology of Fear
• NQ Mobile: Android Malware Doubled in 2012
• Linode Hacked Through ColdFusion Zero Day

Liens:  Blog | Webmaster | Depuis 1999...