Path-Based Cross-Site Scripting (XSS) on Cacti before 1.1.37

Posted by & filed under Security News.

CVE: CVE-2018-10059 CVE URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10059 Affected Versions: 1.1.28 Affected OS:  Windows 2012 with IIS Vulnerability Type: XSS Security Risk: high Vendor URL: https://github.com/Cacti/cacti/issues/1457 Threat XSS vulnerabilities occur when the Web application echoes user-supplied data in an HTML response sent to the Web browser. For example, a Web application might include the user’s name as part… Read more »

Top Methods that Attackers Steal Money from your Credit, Debit cards and Bank Accounts

Posted by & filed under Security News.

Phishing It is a social engineering attack which directs the users to the fake pages and get sensitive information such as usernames, passwords, and credit card details. Attackers using this method widely to get your Financial data’s such as net banking credentials, Credit, Debit card details. Keystroke Logging Attackers use to push malicious software via… Read more »

Junos OS: Kernel crash upon receipt of crafted CLNP packets

Posted by & filed under Ειδοποιήσεις.

  CVE No: CVE-2018-0016. MODIFICATION HISTORY: 11/04/2018 – Initial Publication CVSS SCORE: 9.8 (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) RISK LEVEL: Critical RISK ASSESSMENT: Information for how Juniper Networks uses CVSS can be found at KB 16446 “Common Vulnerability Scoring System (CVSS) and Juniper’s Security Advisories.” PRODUCT AFFECTED: This issue affects Junos OS 15.1, 15.1X49, 15.1X53.   PROBLEM: Receipt of… Read more »

Vulnerability in Outlook let hackers to steal Password Hashes

Posted by & filed under Security News.

Most people rely on Outlook email address for work-related as well as personal tasks. Unfortunately, Outlook may not be as secure as we users would like to think. According to a report published by information security training experts at the Carnegie Mellon Software Engineering Institute, Outlook comes with a security bug that could trigger password hash leaks… Read more »

How to improve Cybersecurity with Machine Learning

Posted by & filed under Security News.

  Leveraging machine learning for cybersecurity Data breaches and cyber attacks have become harder to deter over the last few years. According to Cisco’s 2018 Annual Cybersecurity Report, for example, the expanded volume of both legitimate and malicious encrypted traffic on the web has made it more difficult for security professionals to recognize and monitor… Read more »