sec
Office of Inadequate Security
- El Paso Independent School District employee accounts hacked, money stolen
- Former Excellon employee’s sentencing delayed in hacking case
- Four Army National Guardsmen Indicted in Two Fraud Schemes
- KE: Safaricom calls for police investigation into data leak
- NY: Leader behind hospital ID theft ring takes plea deal
- Slovenian student convicted after finding encryption flaws in government network
Naked Security
- Drone killer: shotgun-like stunner fires “frequency hacks” at airborne pests
- How one man could have grabbed your Instagram account
- Monday review – the hot 21 stories of the week
- Student convicted after finding encryption flaws in government network
- Uber denies it increases fares when your battery is dying
Full Disclosure
- [ERPSCAN-16-010] SAP NetWeaver AS JAVA – information disclosure vulnerability
- [ERPSCAN-16-011] SAP NetWeaver AS JAVA – SQL injection vulnerability
- Linknat VOS2009/VOS3000 SQL injection
- Multiple Reflected XSS vulnerabilities in Infobae Website
- [RCESEC-2016-001] Postfix Admin v2.93 Generic POST Cross-Site Request Forgeries
- MediaLink router MWN-WAPR300N - Several Vulnerabilities
- poisoning / hijacking DNS locally of a third party domain: in shared and custom web hosting and in ISP, in automated /custom control panel software