Naked Security » Exploit

Naked Security » Exploit http://nakedsecurity.sophos.com Computer Security · News · Opinion · Advice · Research Thu, 23 May 2013 06:56:40 +0000 en hourly 1 http://wordpress.com/ http://s2.wp.com/i/buttonw-com.png Naked Security » Exploit http://nakedsecurity.sophos.com Mozilla pushes out new Firefox and Thunderbird: 8 security advisories, 3 critical fixes http://nakedsecurity.sophos.com/2013/05/14/mozilla-pushes-out-new-firefox-and-thunderbird-8-security-advisories-3-critical-fixes/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed http://nakedsecurity.sophos.com/2013/05/14/mozilla-pushes-out-new-firefox-and-thunderbird-8-security-advisories-3-critical-fixes/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed#comments Tue, 14 May 2013 22:30:23 +0000 Paul Ducklin http://nakedsecurity.sophos.com/?p=226259 ]]> http://nakedsecurity.sophos.com/2013/05/14/mozilla-pushes-out-new-firefox-and-thunderbird-8-security-advisories-3-critical-fixes/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed/feed/ 3 pducklin Microsoft rushes out CVE-2013-1347 "Fix it" for the latest Internet Explorer zero-day http://nakedsecurity.sophos.com/2013/05/09/microsoft-rushes-out-cve-2013-1347-fix-it-for-the-latest-internet-explorer-zero-day/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed http://nakedsecurity.sophos.com/2013/05/09/microsoft-rushes-out-cve-2013-1347-fix-it-for-the-latest-internet-explorer-zero-day/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed#comments Thu, 09 May 2013 09:19:13 +0000 Paul Ducklin http://nakedsecurity.sophos.com/?p=225813 ]]> http://nakedsecurity.sophos.com/2013/05/09/microsoft-rushes-out-cve-2013-1347-fix-it-for-the-latest-internet-explorer-zero-day/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed/feed/ 4 fixit-250 pducklin Click on the image to leap to the Microsoft SWI blog post... Click on the image to leap to the Microsoft SWI blog post... SSCC 108 - WW2 crypto, Bitcoin mining, internet cameras, password breaches [PODCAST] http://nakedsecurity.sophos.com/2013/05/08/sscc-108-ww2-crypto-bitcoin-mining-internet-cameras-password-breaches-podcast/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed http://nakedsecurity.sophos.com/2013/05/08/sscc-108-ww2-crypto-bitcoin-mining-internet-cameras-password-breaches-podcast/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed#comments Wed, 08 May 2013 11:06:45 +0000 Paul Ducklin http://nakedsecurity.sophos.com/?p=225720 ]]> http://nakedsecurity.sophos.com/2013/05/08/sscc-108-ww2-crypto-bitcoin-mining-internet-cameras-password-breaches-podcast/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed/feed/ 0 image-108-250 pducklin Lifting the lid on the Redkit exploit kit http://nakedsecurity.sophos.com/2013/05/03/lifting-the-lid-on-the-redkit-exploit-kit-part-1/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed http://nakedsecurity.sophos.com/2013/05/03/lifting-the-lid-on-the-redkit-exploit-kit-part-1/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed#comments Fri, 03 May 2013 15:07:07 +0000 Fraser Howard http://nakedsecurity.sophos.com/?p=225459 ]]> http://nakedsecurity.sophos.com/2013/05/03/lifting-the-lid-on-the-redkit-exploit-kit-part-1/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed/feed/ 7 fraserhoward redkit115 Injected iframe used to redirect victims to Redkit Redkit landing page More recent Redkit landing pages, using JNLP Snippet of code from PHP shell used by Redkit Overview of how Redkit works Breakdown of Redkit compromised web servers by host country Breakdown of ISPs hosting the Redkit compromised web servers Web server breakdown for Redkit compromised servers US Department of Labor website hacked, serves malware, now fixed http://nakedsecurity.sophos.com/2013/05/02/us-department-of-labor-website-hacked-serves-malware-now-fixed/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed http://nakedsecurity.sophos.com/2013/05/02/us-department-of-labor-website-hacked-serves-malware-now-fixed/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed#comments Thu, 02 May 2013 10:59:52 +0000 Paul Ducklin http://nakedsecurity.sophos.com/?p=225356 ]]> http://nakedsecurity.sophos.com/2013/05/02/us-department-of-labor-website-hacked-serves-malware-now-fixed/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed/feed/ 5 dol-sem-250 pducklin What WERE they thinking? Internet-enabled cameras under the security lens once again... http://nakedsecurity.sophos.com/2013/04/30/what-were-they-thinking-internet-enabled-cameras-under-the-security-lens-once-again/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed http://nakedsecurity.sophos.com/2013/04/30/what-were-they-thinking-internet-enabled-cameras-under-the-security-lens-once-again/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed#comments Tue, 30 Apr 2013 13:51:15 +0000 Paul Ducklin http://nakedsecurity.sophos.com/?p=225197 ]]> http://nakedsecurity.sophos.com/2013/04/30/what-were-they-thinking-internet-enabled-cameras-under-the-security-lens-once-again/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed/feed/ 4 pducklin Click on the greyscale version to view Core Security's reference shot of 'Coffee pot with high hopes.' Apple iMessage "censors" mention of Obama: international conspiracy...or software bug? http://nakedsecurity.sophos.com/2013/04/29/apple-imessage-censorious-bug/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed http://nakedsecurity.sophos.com/2013/04/29/apple-imessage-censorious-bug/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed#comments Mon, 29 Apr 2013 11:10:20 +0000 Paul Ducklin http://nakedsecurity.sophos.com/?p=225072 ]]> http://nakedsecurity.sophos.com/2013/04/29/apple-imessage-censorious-bug/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed/feed/ 11 pducklin Oracle and Apple ship critical Java updates - get yours today! http://nakedsecurity.sophos.com/2013/04/17/oracle-and-apple-ship-critical-java-updates-get-yours-today/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed http://nakedsecurity.sophos.com/2013/04/17/oracle-and-apple-ship-critical-java-updates-get-yours-today/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed#comments Wed, 17 Apr 2013 08:59:33 +0000 Paul Ducklin http://nakedsecurity.sophos.com/?p=224297 ]]> http://nakedsecurity.sophos.com/2013/04/17/oracle-and-apple-ship-critical-java-updates-get-yours-today/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed/feed/ 12 java-now-250 pducklin Click on the image to go to Oracle's official April 2013 Critical Patch Advisory... Anatomy of an exploit - Linksys router remote password change hole http://nakedsecurity.sophos.com/2013/04/11/anatomy-of-an-exploit-linksys-router-remote-password-change-hole/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed http://nakedsecurity.sophos.com/2013/04/11/anatomy-of-an-exploit-linksys-router-remote-password-change-hole/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed#comments Thu, 11 Apr 2013 11:34:10 +0000 Paul Ducklin http://nakedsecurity.sophos.com/?p=223942 ]]> http://nakedsecurity.sophos.com/2013/04/11/anatomy-of-an-exploit-linksys-router-remote-password-change-hole/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed/feed/ 7 li-placard-250 pducklin Microsoft to issue 9 security updates on Tuesday, critical for all IE versions, reboot required http://nakedsecurity.sophos.com/2013/04/07/microsoft-to-issue-9-security-updates-on-tuesday-critical-for-all-ie/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed http://nakedsecurity.sophos.com/2013/04/07/microsoft-to-issue-9-security-updates-on-tuesday-critical-for-all-ie/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed#comments Sun, 07 Apr 2013 19:00:27 +0000 Paul Ducklin http://nakedsecurity.sophos.com/?p=223428 ]]> http://nakedsecurity.sophos.com/2013/04/07/microsoft-to-issue-9-security-updates-on-tuesday-critical-for-all-ie/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed/feed/ 12 pducklin