sec

Naked Security

• Breach of millions of kids’ images and messages sparks disclosure spat at uKnowKids
• Celebrity nude photo hacker pleads guilty
• Nissan LEAF cloud security fail leaves drivers exposed
• Why Facebook is using satellites to map every building in 20 countries

Full Disclosure

• CSNC-2016-002 - Open Redirect in OpenAM
• D-Link, Netgear Router Vulnerabiltiies
• Re: Executable installers are vulnerable^WEVIL (case 26): the installer of GIMP for Windows allows arbitrary (remote) and escalation of privilege
• Re: Cisco ASA VPN - Zero Day Exploit
• XSSer v1.7b: "ZiKA-47 Swarm!" released....
• Hacking Passwords, Lesson 11, Available Now!
• Executable installers are vulnerable^WEVIL (case 26): the installer of GIMP for Windows allows arbitrary (remote) and escalation of privilege
• Ubiquiti Networks UniFi v3.2.10 Generic CSRF Protection Bypass
• CVE ID Request : Centreon remote code execution
• CVE ID Request : Proxmox VE Insecure hostname checking (remote root exploit)
• CVE-2015-6541 : Multiple CSRF in Zimbra Mail interface
• [CVE-2015-5345] Information disclosure vulnerability in Apache Tomcat
• Various Linux Kernel USERNS Issues
• Re: Executable installers are vulnerable^WEVIL (case 26): the installer of GIMP for Windows allows arbitrary (remote) and escalation of privilege
• Executable installers are vulnerable^WEVIL (case 4): InstallShield's wrapper and setup.exe

SANS Internet Storm Center, InfoCON: green

• Critical Vulnerabilities in Palo Alto Networks PAN-OS , (Thu, Feb 25th)
• ISC Stormcast For Friday, February 26th 2016 http://isc.sans.edu/podcastdetail.html?id=4885, (Fri, Feb 26th)