Showing 17 results for: April 2014 ×

SpiderLabs Radio: April 24, 2014

In this episode: The Darknet gets its very own search engine AOL accounts hacked to send spam Google refunds fake anti-virus app Patched backdoor in Wi-Fi routers can be reopened Apple releases patches for iOS and OS X Researcher claims...

Privilege Escalation Vulnerability in Cisco ASA's SSL VPN

Trustwave SpiderLabs security researcher Jonathan Claudius has discovered a privilege escalation vulnerability in Cisco ASA's SSL VPN service. Cisco ASA is one of the most popular and widely deployed firewalls in the world. Like most firewalls it provides a variety...

NetSupport Information Leakage Using Nmap Script

NetSupport allows corporations to remotely manage and connect to PC’s and servers from a central location for the purposes of desktop support. In my last post I discussed how I wrote a script using the NetSupport scripting language to find...

SpiderLabs Radio: April 17, 2014

In this episode: A researcher shows how to locate and unlock a Tesla Model S Weev is freed, but for an odd reason Lavabit is not so lucky with their appeal We learn (again) why biometric authentication is not a...

Announcing ModSecurity v2.8.0

The ModSecurity Project team is pleased to announce the availability of v2.8.0. To see the full release notes or download the the source packages, see the ModSecurity GitHub project release tab: https://github.com/SpiderLabs/ModSecurity/releases New Features Version 2.8.0 comes with five important...

TrustKeeper Scan Engine Update - April 10, 2014

Summary The latest update to the TrustKeeper Scan Engine is now available. This release was created solely to add detection for the recently disclosed “HeartBleed” vulnerability affecting OpenSSL libraries. HeartBleed The HeartBleed vulnerability was disclosed earlier this week, on April...

SpiderLabs Radio: April 10, 2014

In this episode I bid a fond farewell to Windows XP; Microsoft patches that RTF 0-day vulnerability, Some Ransomware authors get a lesson in crypto, A new do-nothing security app that literally did nothing, and the vulnerability giving everyone heartburn,...

Detecting A Surveillance State - Part 3 Infected Firmware

In this third installment of Detecting A Surveillance State blog series I will move away from hardware devices as discussed in parts one and two and talk instead about something harder to detect--persistent compromises made possible by BIOS or firmware...

Farewell to XP

As Karl noted in his Patch Tuesday post, yesterday was the last day of support for Windows XP. We flipped the switch at midnight last night to make detection of XP a failing condition for TrustKeeper vulnerability scans. Those relatively...

Microsoft Patch Tuesday, April 2014

April’s Microsoft Patch Tuesday is on par with the prior releases this year. There are only four bulletins being released, two rated “Critical” and two rated “Important”. Of course the long coming, but somehow still apocalyptic news that Windows XP...

Microsoft Advance Notification for April 2014

The Microsoft April security release is almost upon us with security updates scheduled to deploy on Tuesday, April 8th. This day will go down in history as a major milestone for Windows XP and Office 2003 since it will be...

Microsoft Word RTF 0-Day (CVE-2014-1761)

A zero-day vulnerability in Microsoft Word involving the handling of the RTF file format was published last week in the form of a Microsoft advisory. In its advisory, Microsoft states that it is aware of “limited, targeted attacks” exploiting this...

TrustKeeper Scan Engine Update - April 3, 2014

Summary The latest update to the TrustKeeper Scan Engine is now available. It adds detection for a dozen vulnerabilities, including several affecting Cisco ASA and IOS devices. We also added detection for more than a dozen common web backdoors. These...

SpiderLabs Radio: April 3, 2014

In this episode I talk about GMail making HTTPS mandatory, a move some people don't like; Microsoft announces a 0-day exploit targeting the RTF parser in Word and Outlook; and Ploutus, ATM malware that's making the news. I also interview...