News Summary
We also offer the following RSS Feeds:
We do collect a number of security related news feeds in this page. To suggest additional news sources or suggest other changes,
use our contact form. We try hard to keep the feeds RSS, XML, CSS, RFC, IETF, ISO, DIN, TüV,
ANSI complaint, but may fail occasionally. Let us know if things don't work for you and we may fix it.
On our index page, click on the "Newsfeed" icon on the left to open up a side bar with excerpts from this feed.
InternetStormCenter
- February 2010 Black Tuesday Overview, (Tue, Feb 9th)
- Oracle has an unscheduled security alert and patch for CVE-2010-0073. The issue affects WebLogic Server and is remotely exploitable. Details and patch are here http://www.oracle.com/technology/deploy/security/alerts/alert-cve-2010-0073.html, (Tue, Feb 9
- When is a 0day not a 0day? Samba symlink bad default config, (Tue, Feb 9th)
- When is a 0day not a 0day? Fake OpenSSh exploit, again. , (Mon, Feb 8th)
- Mandiant Mtrends Report, (Sun, Feb 7th)
- LANDesk Management Gateway Vulnerability, (Sat, Feb 6th)
- tweaked ISC layout. Please submit screen shot and browser details if things don't look right., (Sat, Feb 6th)
- Oracle WebLogic Server Security Alert, (Sat, Feb 6th)
- New version of Andreas Schuster's Evtx Parser released http://computer.forensikblog.de/en/2010/02/evtx_parser_1_0_2.html, (Sat, Feb 6th)
- Memory Analysis - time to move beyond XP, (Fri, Feb 5th)
- WordPress iframe injection?, (Fri, Feb 5th)
- More MiFi Fun. Consistent Authentication Matters! http://appsecstreetfighter.com, (Fri, Feb 5th)
- Dealing with User 2.0, (Thu, Feb 4th)
- Microsoft Patch Tuesday Pre-Release, (Thu, Feb 4th)
- Information Disclosure Vulnerability in Internet Explorer, (Wed, Feb 3rd)
- Support for Legacy Browsers, (Wed, Feb 3rd)
- Anatomy of a Form Spam Campaign (in progress against isc.sans.org right now) https://blogs.sans.org/appsecstreetfighter/, (Wed, Feb 3rd)
- APPLE-SA-2010-02-02-1 iPhone OS 3.1.3 and iPhone OS 3.1.3 for iPod touch, (Wed, Feb 3rd)
- Cisco Secure Desktop Remote XSS Vulnerability, (Tue, Feb 2nd)
- Twitter Mass Password Reset due to Phishing, (Tue, Feb 2nd)
SANS Newsbites
- NSA to Help Google Analyze Attack, Improve Security (February 4, 2010)
- Director of National Intelligence Warns of Security Threats (February 2 & 3, 2010)
- Australian ISP Not Liable for Customers' Illegal Downloading (February 4, 2010)
- US Legislators Pass Cyber Security R&D Bill (February 3 & 4, 2010)
- Hackers Try to Steal Carbon Credits (February 3 & 4, 2010)
- IE Flaw Allows File Access (February 3 & 4, 2010)
- Google to Drop IE 6 Support (February 3, 2010)
- Ceridian Corp. Data Breach (February 3 & 4, 2010)
- VoIP Hacker Pleads Guilty (February 3, 2010)
- Study: Banking Passwords Often Used for Other Sites (February 2, 2010)
- High Stakes in Covert Cyber War (January 26, 2010)
- Critical Infrastructure Computer Systems Under Constant Attack (January 28 & 29, 2010)
- MI5 Warned of Chinese Cyber Espionage More Than a Year Ago (January 31 & February 1, 2010)
- Navy Establishes US Fleet Cyber Command (January 29, 30 & February 1, 2010)
- Pushdo Botnet Sending Fake SSL Traffic to Websites (January 29 & February 1, 2010)
- Health Net Reviewing Connecticut AG's Lawsuit (February 1, 2010)
- Iowa Casino Workers' Data Compromised (January 30 & February 1, 2010)
- House Leaders Call for Investigation Into Defaced Websites (January 29, 2010)
- OPM Drops Plan to Stop Using SSNs as Government Employee Identifiers (January 29, 2010)
- Man Arrested for Allegedly Selling Modified Cable Modems (January 29, 2010)
Network Computing Security
SecurityFocus Vulnerabilities
US-Cert Bulletins
- SB10-040: Vulnerability Summary for the Week of February 1, 2010
- SB10-018: Vulnerability Summary for the Week of January 11, 2010
- SB10-011: Vulnerability Summary for the Week of January 4, 2010
- SB10-004: Vulnerability Summary for the Week of December 28, 2009
- SB09-362: Vulnerability Summary for the Week of December 21, 2009
- SB09-355: Vulnerability Summary for the Week of December 14, 2009
- SB09-348: Vulnerability Summary for the Week of December 7, 2009
- SB09-341: Vulnerability Summary for the Week of November 30, 2009
- SB09-334: Vulnerability Summary for the Week of November 23, 2009
- SB09-327: Vulnerability Summary for the Week of November 16, 2009
- SB09-320: Vulnerability Summary for the Week of November 9, 2009
- SB09-313: Vulnerability Summary for the Week of November 2, 2009
- SB09-306: Vulnerability Summary for the Week of October 26, 2009
- SB09-299: Vulnerability Summary for the Week of October 19, 2009
- SB09-292: Vulnerability Summary for the Week of October 12, 2009
- SB09-285: Vulnerability Summary for the Week of October 5, 2009
- SB09-278: Vulnerability Summary for the Week of September 28, 2009
- SB09-271: Vulnerability Summary for the Week of September 21, 2009
- SB09-264: Vulnerability Summary for the Week of September 14, 2009
- SB09-257: Vulnerability Summary for the Week of September 7, 2009
