Tuesday, March 27, 2012

Google Alert - Vulnerabilities

=== News - 8 new results for [Vulnerabilities] ===

Open Source Code Libraries Seen as Rife With Vulnerabilities
PCWorld
By Ellen Messmer, NetworkWorld A study of how 31 popular open-source code
libraries were downloaded over the past 12 months found that more than a
third of the 1261 versions of these libraries had a known vulnerability and
about a quarter of the ...
<http://www.pcworld.com/businesscenter/article/252593/open_source_code_libraries_seen_as_rife_with_vulnerabilities.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.pcworld.com/businesscenter/article/252593/open_source_code_libraries_seen_as_rife_with_vulnerabilities.html&hl=en&geo=us>

Command Injection Attacks, Automated Password Guessing On The Rise
Dark Reading
By Tim Wilson Spam and several of the most common vulnerabilities are on
the decline, according to a report issued this week, but there has been a
marked increase in new types of attacks, such as shell command injection
and automated password guessing.
<http://www.darkreading.com/vulnerability-management/167901026/security/vulnerabilities/232700282/command-injection-attacks-automated-password-guessing-on-the-rise.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.darkreading.com/vulnerability-management/167901026/security/vulnerabilities/232700282/command-injection-attacks-automated-password-guessing-on-the-rise.html&hl=en&geo=us>

Social Phishing Spikes As Spam Declines, IBM Finds
InformationWeek
The X-Force Trend and Risk Report for 2011, released Thursday, revealed a
50% decline in spam email compared to 2010, more diligent vendor patching
of security vulnerabilities, and fewer Web application vulnerabilities,
with half the incidence of ...
<http://informationweek.com/news/thebrainyard/social_networking_consumer/232700191>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://informationweek.com/news/thebrainyard/social_networking_consumer/232700191&hl=en&geo=us>

How much does a 0-day vulnerability cost?
Help Net Security
The market for exploits for zero-day vulnerabilities has exploded in the
last year, says Adriel Desautels, the founder of Netragard, a penetration
testing and vulnerability assessment outfit that, among other things,
acquires and develops exploits.
<http://www.net-security.org/secworld.php?id=12652>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.net-security.org/secworld.php%3Fid%3D12652&hl=en&geo=us>

Report: iOS vulnerability sold for $250000
The H
Business appears to be booming for those who trade in unpatched (zero-day)
security holes: according to a report by Forbes magazine, a US company that
works for the US government recently paid $250000 for a vulnerability in
Apple's iOS operating system ...
<http://www.h-online.com/security/news/item/Report-iOS-vulnerability-sold-for-250-000-1480102.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.h-online.com/security/news/item/Report-iOS-vulnerability-sold-for-250-000-1480102.html&hl=en&geo=us>

Italian researchers 'repair' Android vulnerabilities
Agenzia Giornalistica Italia
(AGI) Trento - Italian researchers have discovered and neutralised a
serious vulnerability in all versions of Android. The Google operating
system was developed specifically for smartphones and tablet computers. The
result is the fruit of collaboration ...
<http://www.agi.it/english-version/people/elenco-notizie/201203261245-spe-ren1036-italian_researchers_repair_android_vulnerabilities>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.agi.it/english-version/people/elenco-notizie/201203261245-spe-ren1036-italian_researchers_repair_android_vulnerabilities&hl=en&geo=us>

New Study Reveals Widespread Use of Vulnerable Open-Source Components by
the ...
MarketWatch (press release)
Google Web Toolkit (GWT) was downloaded 17.7 million times with known
vulnerabilities. Other popular vulnerable libraries downloaded included
Xerces, Spring MVC, and Struts 1.x. -- Users are not update aware: One in
three of the most popular components ...
<http://www.marketwatch.com/story/new-study-reveals-widespread-use-of-vulnerable-open-source-components-by-the-global-500-2012-03-26>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.marketwatch.com/story/new-study-reveals-widespread-use-of-vulnerable-open-source-components-by-the-global-500-2012-03-26&hl=en&geo=us>

IBM X-Force tags three growing cyberattack trends in 2011
Infosecurity Magazine
IBM has developed "glass box" technology that uses static (white box)
and dynamic (black box) testing methods to locate vulnerabilities in web
applications. IBM is acquiring Green Hat, the cloud-based software testing
company.
<http://www.infosecurity-magazine.com/view/24760/ibm-xforce-tags-three-growing-cyberattack-trends-in-2011/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.infosecurity-magazine.com/view/24760/ibm-xforce-tags-three-growing-cyberattack-trends-in-2011/&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

posted by saz95 @ 4:26 PM   0 comments

0 Comments:

Post a Comment

<< Home