D-Link routers vulnerable to DNS hijacking

Thursday, January 29th, 2015

At least one and likely more D-Link routers as well as those of other manufacturers using the same firmware are vulnerable to remote changing of DNS settings and, effectively, traffic hijacking, a Bulgarian security researcher has discovered. Todor Donev, a member of the Ethical Hacker research team, says that ...

Posted in Hardware, Internet, Privacy, Security | No Comments

Critical GHOST vulnerability affects most Linux Systems

Wednesday, January 28th, 2015

A highly critical vulnerability has been unearthed in the GNU C Library (glibc), a widely used component of most Linux distributions, that could allow attackers to execute malicious code on servers and remotely gain control of Linux machines. The vulnerability, dubbed "GHOST" and assigned CVE-2015-0235, was discovered and disclosed by the ...

Posted in Internet, Linux, Security | No Comments

‘Less’ means more to malware authors targeting Linux users

Monday, November 24th, 2014

Using the "less" Linux command to view the contents of files downloaded from the Internet is a dangerous operation that can lead to remote code execution, according to a security researcher. At first glance, less appears to be a harmless command that outputs a file's content to a terminal window and ...

Posted in Internet, Linux, Privacy, Security | No Comments

Microsoft posts critical patch for huge Windows vulnerability that affects all modern machines

Tuesday, November 11th, 2014

Remember Heartbleed? You know, the exploit in SSL that was so bad it got its own brand? Microsoft may have an issue of similar scale on its hands with a critical patch issued via Windows Update today. The patch in question is MS14-066, or otherwise known as the cryptically named “Vulnerability in Schannel ...

Posted in Internet, Privacy, Security, Windows | No Comments

Microsoft Windows Hit By New Zero-Day Attack

Wednesday, October 22nd, 2014

Microsoft has disclosed that a new zero-day vulnerability is present in Windows, and is exploited via Microsoft Office files. According to Microsoft Security Advistory 3010060, the vulnerability is present in all supported versions of Windows except Windows Server 2003. The vulnerability (designated as CVE-2014-6352) is triggered by an attacker sending a specially ...

Posted in Internet, Security, Windows | No Comments

Copyright 2008-2024 PC Sympathy - Entries (RSS) - Sitemap