pbnetworks - Computer Security Solutions

Home » What's New

What's New

07/27/10　WPA2 Hole196 Vulnerability
Researchers at wireless security company AirTight Networks have uncovered a vulnerability in the widely used WPA2 security protocol, part of the 802.11 standard. The vulnerability, termed "Hole 196", which can be exploited by attackers already authenticated to the network, allows decryption of d..
06/24/10　IG Finds Cybersecurity Unit Lacks Authority, Manpower
A key government team responsible for preventing and responding to cybersecurity attacks lacks the authority to ensure that federal agencies are properly protecting their information technology networks and has insufficient staffing to perform its missions, the Homeland Security Department's inspect..
03/30/10　'Smart' utility meters have security holes and can be hacked, expert finds
SAN FRANCISCO � Computer-security researchers say new �smart� meters that are designed to help deliver electricity more efficiently also have flaws that could let hackers tamper with the power grid in previously impossible ways. At the very least, the vulnerabilities open the door for attackers ..
02/16/10　Police nab hacker over central Moscow porn show
Police in south Russian have detained the hacker responsible for the broadcast of a hardcore porn clip on a central Moscow advertising screen last month, a paper said on Tuesday.The showing of a two-minute pornographic clip on a massive advertising screen caused a traffic jam in downtown Moscow i..
02/16/10　Social Engineering Scammers Offer Live Support
Just like legitimate software companies, cyber scammers are experimenting with online services supported by human intelligence.Symantec reports that those behind the fake antivirus software known as Live PC Care have added a new social engineering element -- live support agents who will try to con..
02/16/10　Core Integrates Its Penetration Testing Product With Metasploit
Another sign of the times in the maturing penetration-testing market: Core Security Technologies today announced that its commercial product will operate hand-in-hand with Metasploit's open-source tool.Core, which sells the user-friendly penetration product Core Impact, says the next version of i..
02/11/10　CookieMonster nabs user creds from secure sites
Websites used for email, banking, e-commerce and other sensitive applications just got even less secure with the release of a new tool that siphons users' authentication credentials - even when they're sent through supposedly secure channels.Dubbed CookieMonster, the toolkit is used in a variety ..
12/29/09　Secret mobile phone codes cracked
On Sunday 27th of December at the 26th Chaos Communication Congress (26C3) in Berlin, security researchers published open source instructions for cracking the A5/1 mobile telephony encryption algorithm and for building an IMSI catcher that intercepts mobile phone communication. The Global System..
12/29/09　New Google CAPTCHAs now cracked
Even the latest images in Google�s reCAPTCHAcan be cracked with sufficient reliability to allow protective services to be exploited. Last week, Google complained that claims to this effect only related to an old CAPTCHA method from 2008 that is no longer used.Now, Jonathan Wilkins, the author of ..
12/29/09　Microsoft confirms IIS hole
Microsoft has confirmed the security hole in its IIS web server, but hasn't disclosed which versions of the product are affected. According to the finder of the "semi-colon bug", versions up to and including version 6 are vulnerable. The hole allows attackers, for instance, to camouflage executa..
12/01/09　Microsoft investigating 'black screen of death'
Microsoft said on Monday that it is looking into reports that its latest security updates are causing some serious problems for certain users.The problem has been dubbed the "black screen of death" because those affected are left with a black desktop and little else on their screen. "Microsoft is i..
12/01/09　Microsoft releases password attack data
Microsoft released data collected from an FTP-server honeypot, showing that attempts to guess passwords continue to focus on the low-hanging fruit: passwords with an average length of eight characters, with "password" and "123456" being the most common.The data is part of a project to monitor att..
08/04/09　Contractor returns money to Pentagon
Apptis Inc., a military information technology provider, repaid $1.3 million of a $5.4 million Pentagon contract after investigators said the company provided inadequate computer security and a subcontractors system was hacked from an Internet address in China.Privately held Apptis, based in Chan..
05/06/09　Thief holds Virginia medical data ransom
An online thief compromised the network of the Commonwealth of Virginia's Department of Health Professions, allegedly stealing healthcare data on nearly 8.3 million patients, according to reports.The network intruder left a message claiming to have taken 8.26 million patient medical records and a..
05/03/09　Diving Niihau arches
..
04/29/09　US cyber-security 'embarrassing'
America's cyber-security has been described as "broken" by one industry expert and as "childlike" by another.The criticism comes as President Obama prepares to release the results of a review he had ordered. Tim Mather, chief strategist for security firm RSA, told BBC News: "The approach we have re..
04/28/09　Sea Turtle at Po'ipu Beach
..
04/21/09　Data stolen from US Joint Strike Fighter project
Unauthorised persons have succeeded in gaining access to plans for an American fighter aircraft project. The Wall Street Journal is reporting that computer spies have stolen "several terabytes" of data from the Joint Strike Fighter project. Since the plans relate to the design and the electronic s..
04/17/09　Wireless MITM video
..
04/17/09　Metasploit3 Postgres on windows video
This is a video tutorial by Lou Lombardy showing how to use the new Metasploit GUI in a Windows XP environment. You will need to have a Windows XP machine and a target machine. The latest Metasploit 3.1 framework for Windows and the Postgres Database will need to be installed on the Windows XP mac..
04/17/09　Brutish SSH attacks continue to bear fruit
The number of attacks against secure shells protecting Linux boxes, internet routers and other network devices has continued to climb over the past several years, an indication that they still bear fruit for the miscreants who mount them.Data collected by DShield.org, a organization that aggrega..
04/17/09　NSA oversteps relaxed wiretapping laws
A recent investigation into the National Security Agency's electronic eavesdropping activities has found that the federal agency exceeded its authority to wiretap Americans, the New York Times reported this week.The revelations, made by numerous unnamed sources in the story, come nine months afte..
04/17/09　Vulnerabilities in Linux allow root privileges
According to a number of Linux distributors, a bug in the udev service under Linux can be exploited to obtain root privileges. The kernel uses udev to dynamically create device-specific files and folders (/dev/) for input and output, so that only devices which are actually connected appear in /d..
04/15/09　SecureState SQL injection Video
SecureState SQL injection Video..
04/13/09　Power grid's vulnerability no surprise
Security professional greeted this week's media reports of hackers infiltrating the electric grid with a collective yawn.On Wednesday, the Wall Street Journal kicked off a fresh awareness of the vulnerability of U.S. critical infrastructure when the newspaper reportedthat cyber spies from China and ..
04/13/09　StalkDaily/Mikeyy continues to flood Twitter
Despite Twittersaying the initial issue with the StalkDaily wormhad been resolved, Twitter users are now seeing the effects of a fourth generation of the worm. Now known as the Mikeyy worm, after Mikeyy Mooney, a 17 year old who claimed responsibility, the new worm promotes Mikeyy and taunts Twit..

Return to Home