Sunday, April 26, 2026
Latest:

Computer Security Articles

RSS Reader for Computer Security Articles

Independent

ComputerWorldIndependent
admin

Fitbit: One explodes, data from another used to charge husband with wife's murder

Credit to Author: Darlene Storm| Date: Wed, 26 Apr 2017 08:54:00 -0700

Oh good, another case of exploding devices. This time the culprit was a Fitbit Flex 2, which allegedly caused second-degree burns on a Wisconsin woman’s arm. She was sitting and reading a book when her Fitbit “exploded” on her wrist. “It was either defective or really mad I was sitting still so long,” she told ABC News. “Either way, it burned the heck out of my arm.”

Dina Mitchell claimed the Fitbit is “totally melted” and her doctor “had to pick pieces of plastic out of her wound.”

To read this article in full or to leave a comment, please click here

Read More
ComputerWorldIndependent
admin

Old Windows Server machines can still fend off hacks. Here's how

Credit to Author: Michael Kan| Date: Wed, 26 Apr 2017 04:01:00 -0700

If you’re running a Windows Server 2003 machine, you have a problem. Your already-vulnerable computer is now at severe risk of being hacked.

That’s due to the internet release earlier this month of a batch of updates that paint a bull’s-eye on computers running Windows Server 2003, according to security researchers.

“I can teach my mom how to use some of these exploits,” said Jake Williams, founder of Rendition Infosec, a security provider. “They are not very complicated at all.”

Experts are urging affected businesses to upgrade to the latest Windows OSes, which offer security patches that can address the threat.

To read this article in full or to leave a comment, please click here

Read More
IndependentSecuriteam
admin

SSD Advisory – SquirrelMail Remote Code Execution

Credit to Author: Maor Schwartz| Date: Tue, 25 Apr 2017 05:24:06 +0000

Vulnerability Summary The following advisory describes Remote Code Execution found in SquirrelMail version 1.4.22. SquirrelMail is a standards-based webmail package written in PHP. It includes built-in pure PHP support for the IMAP and SMTP protocols, and all pages render in pure HTML 4.0 (with no JavaScript required) for maximum compatibility across browsers. It has very … Continue reading SSD Advisory – SquirrelMail Remote Code Execution

Read More
IndependentSecuriteam
admin

SSD Advisory – Emby Media Server Multiple Vulnerabilities

Credit to Author: Maor Schwartz| Date: Tue, 25 Apr 2017 05:03:48 +0000

Vulnerabilities Summary The following advisory describes three (3) vulnerabilities found in Emby Media Server. Affected versions are: 3.1.5, 3.1.2, 3.1.1, 3.1.0 and 3.0.0. Emby Media Server (formerly Media Browser) is a media server designed to organize, play, and stream audio and video to a variety of devices. Emby is open-source, and uses a client server model. … Continue reading SSD Advisory – Emby Media Server Multiple Vulnerabilities

Read More
ComputerWorldIndependent
admin

How your company needs to train workers in cybersecurity

Credit to Author: Matt Hamblen| Date: Tue, 25 Apr 2017 09:21:00 -0700

With workplace cyberattacks on the rise, industry experts are pressing businesses to train their workers to be more vigilant than ever to protect passwords and sensitive data and to recognize threats.

“It is imperative for organizations of all sizes to instill among employees the critical role they play in keeping their workplace safe and secure,” said Michael Kaiser, executive director of the National Cyber Security Alliance, a group that promotes education on the safe and secure use of the internet. The group’s members include such major technology companies as Cisco, Facebook, Google, Intel and Microsoft.

To read this article in full or to leave a comment, please click here

Read More
IndependentKrebs
admin

UK Man Gets Two Years in Jail for Running ‘Titanium Stresser’ Attack-for-Hire Service

Credit to Author: BrianKrebs| Date: Tue, 25 Apr 2017 15:06:34 +0000

A 20-year-old man from the United Kingdom was sentenced to two years in prison today after admitting to operating and selling access to “Titanium Stresser,” a simple-to-use service that let paying customers launch crippling online attacks against Web sites and individual Internet users. Adam Mudd of Herfordshire, U.K. admitted to three counts of computer misuse connected with his creating and operating the attack service, also known as a “stresser” or “booter” tool. Services like Titanium Stresser coordinate so-called “distributed denial-of-service” or DDoS attacks that hurl huge barrages of junk data at a site in a bid to make it crash or become otherwise unreachable to legitimate visitors.

Read More
IndependentSecuriteam
admin

SSD Advisory – HPE OpenCall Media Platform (OCMP) Multiple Vulnerabilities

Credit to Author: Maor Schwartz| Date: Mon, 24 Apr 2017 05:57:39 +0000

Vulnerabilities Summary The following advisory describes Reflected Cross-Site Scripting (XSS) vulnerabilities and a Remote File Inclusion vulnerability that when combined can lead to arbitrary Javascript code execution, were found in HP OpenCall Media Platform (OCMP), version 4.3.2. HPE OpenCall Media Platform (OCMP) is a suite of software and hardware applications which allow implementation of common … Continue reading SSD Advisory – HPE OpenCall Media Platform (OCMP) Multiple Vulnerabilities

Read More