Security News

Attack Uses Cross-Site Request Forgery to Compromise DNS Servers on Routers (May 25, 2015) (SANS Newsbites)
2015-05-26 21:11

Server-side browsing considered harmful (Reddit)
2015-05-26 14:11

Massive campaign uses router exploit kit to change routers' DNS servers (Help Net Security)
2015-05-26 12:29

Well-known security researcher Kafeine has spotted an active campaign aimed at compromising SOHO routers and changing their DNS settings so that the attackers can seamlessly redirect users to phishing...

Bank-heist malware's servers phone home to Russian spookhaus (The Register)
2015-05-25 02:11

Logjam security flaw leaves top HTTPS websites, mail servers vulnerable (ZDNet)
2015-05-20 11:11

Bug 2250 JSSE server is still limited to 768-bit DHE (Reddit)
2015-05-20 07:11

HTTPS-crippling attack threatens tens of thousands of Web and mail servers (ArsTechnica)
2015-05-20 07:11

WSO2 Identity Server Plagued by Critical Vulnerabilities (SecurityWeek)
2015-05-14 12:10

XSS, CSRF Vulnerabilities identitified in WSO2 Identity Server (Threatpost)
2015-05-13 18:45

A handful of vulnerabilities have been identified in WSO2 Identity Server that could lead to takeover, firewall bypass, and potentially open subsequent internal servers up to further attacks.

EllisLab servers breached by hackers wielding stolen admin password (Help Net Security)
2015-05-04 12:41

EllisLab, the company behind the popular ExpressionEngine CMS, has suffered a breach after hackers managed to gain unauthorized access to its servers. "At 10:49am PDT on March 24, 2015, an attacker...