Researcher identifies a series of security flaws in DirectPass, Trend Micro’s cloud-based password manager software. Source: http://news.softpedia.com/news/Experts-Find-Multiple-Security-Flaws-in-Trend-Micro-s-DirectPass-1-5-0-356425.shtml … [Read more...] about Security Flaws in Online Password Manager
Many big-brand Intrusion Prevention Systems (IPS) consistently fail to block attacks that target vulnerabilities in web-based applications using Advanced Evasion Techniques (AETs), a University of Glamorgan study has found. At first sight the team's findings are slightly alarming; using Stonesoft's open source Evader AET generation tool targeting two ancient vulnerabilities, … [Read more...] about Intrusion Prevention Systems fail to spot AET attacks . . .
Experts from a security firm determined hackers are using the SourceForge Web site to drop the ZeroAccess Trojan onto user’s computers and inject malware. Source: http://news.softpedia.com/news/Fake-SourceForge-Website-Serves-ZeroAccess-Malware-346423.shtml?utm_source=feedly … [Read more...] about Fake SourceForge website serves ZeroAccess malware.
Researchers discovered a backdoor-opening malware that uses a “magic code” in order to start communication with the same IP address and port once the C&C server instructs it to do so. The attackers gain permanent access to the machine once the account is created. Source: … [Read more...] about Backdoor Trojan uses “magic code” to contact C&C server.
Researchers offered consumers options to mitigate potential attacks on their home and small office routers that contain security problems. Thirteen popular routers were discovered vulnerable in allowing a hacker to snoop or modify network traffic as well as access credentials. Source: … [Read more...] about Home routers contain critical security vulnerabilities