4xsecurityteam.blogspot.com
4 X Security Team: Apple patches Pwn2Own iPhone OS vulnerabilities
http://4xsecurityteam.blogspot.com/2011/04/apple-patches-pwn2own-iphone-os.html
4 X Security Team. Apple patches Pwn2Own iPhone OS vulnerabilities. Monday, April 18, 2011 by Mzer0. Apple Mac OS X. Apple has released a critical update for its flagship iOS mobile operating system to fix several gaping security holes, including a few that were used in successful exploits at this year’s CanSecWest Pwn2Own contest. IPhone) and a team of researchers who broke into RIM’s BlackBerry. An integer overflow issue existed in the handling of nodesets. Visiting a maliciously crafted website ma...
4xsecurityteam.blogspot.com
4 X Security Team: May 2008
http://4xsecurityteam.blogspot.com/2008_05_01_archive.html
4 X Security Team. IFrame DDoS attacking explained. Friday, May 30, 2008 by Mzer0. Made by a guy called Halla that has a site called informationleak. Anyhow it explains how to DDoS a site using iFrame's just to give you the basic idea. Google XSS Exploit May Show Some Private Data. Now, here’s what Tony was able to do with the cookie (as opposed to how a real attacker would act, he only did this after I gave him permission, of course):. View many of my iGoogle gadgets, e.g. a Todo list. Two Sony websites...
4xsecurityteam.blogspot.com
4 X Security Team: April 2008
http://4xsecurityteam.blogspot.com/2008_04_01_archive.html
4 X Security Team. McAfee Avert Labs Mass Hack Demo. Sunday, April 13, 2008 by Mzer0. This is huge. In the matter of days more than 200,000 sites were effected by these mass hacks. Some with JS while others with ASP! Some of the attacks were on the popular phpBB. Even Trend Micro fell victim to the web hack! Here is a video demo:. For More information please visit:. Computer Security Research - McAfee Avert Labs Blog. Rootkits - The new age of viruses. Sunday, April 6, 2008 by Mzer0. Pretty stealthy and ...
4xsecurityteam.blogspot.com
4 X Security Team: New MAC OS X scareware delivered through blackhat SEO
http://4xsecurityteam.blogspot.com/2011/05/new-mac-os-x-scareware-delivered.html
4 X Security Team. New MAC OS X scareware delivered through blackhat SEO. Sunday, May 8, 2011 by Mzer0. Researchers from Intego have intercepted a new scareware sample targeting the MAC OS X. The scareware will periodically open pornographic content on the affected Mac, in order to trick the users into thinking they’re infected with malware. The scareware is sold for $59,95, part of a scareware affiliate network targeting Mac OS X users in particular. Apple Mac OS X. Microsoft Windows XP SP2.
4xsecurityteam.blogspot.com
4 X Security Team: Emergency Adobe Flash Player patch coming today
http://4xsecurityteam.blogspot.com/2011/04/emergency-adobe-flash-player-patch_18.html
4 X Security Team. Emergency Adobe Flash Player patch coming today. Monday, April 18, 2011 by Mzer0. Less than a week after warning that hackers were embedding malicious Flash Player files (.swf) into Microsoft Word documents to launch targeted malware attacks, Adobe plans to release an emergency Flash Player patch today to fix the underlying problem. According to this Secunia advisory. The flaw allows a hacker to completely hijack a vulnerable Windows computer:. Secunia has posted a technical analysis.
4xsecurityteam.blogspot.com
4 X Security Team: Oracle to patch 73 critical DB server flaws
http://4xsecurityteam.blogspot.com/2011/04/oracle-to-patch-73-critical-db-server.html
4 X Security Team. Oracle to patch 73 critical DB server flaws. Monday, April 18, 2011 by Mzer0. The next batch of security patches from Oracle will be a biggie: 73 new security vulnerability fixes across hundreds of Oracle products. According to an advance notice. From the database server giant, some of the vulnerabilities affect multiple products and may be exploited over a network without the need for a username and password. Release 2, versions 11.2.0.1, 11.2.0.2. Oracle Fusion Middleware 11. Oracle ...
4xsecurityteam.blogspot.com
4 X Security Team: October 2008
http://4xsecurityteam.blogspot.com/2008_10_01_archive.html
4 X Security Team. Security Bloggers Meeting at RSA Europe 2008 (updated). Friday, October 17, 2008 by Mzer0. Kevin Riggins from Infosecramblings. Proposed a Security Bloggers/Twits meeting during the RSA Europe 2008 conference on Tuesday the 28th of October at 8 PM. The location hasn't been set yet. If you are interested in joining us, drop a message with Kevin. It's final: Tuesday the 28th at 8:00 PM. The Novotel London Excel. Bar is the location. More info here. RSA Europe 2008 soon to come. 8220;Thes...
4xsecurityteam.blogspot.com
4 X Security Team: Adobe PDF patch released, but only for some
http://4xsecurityteam.blogspot.com/2009/03/adobe-pdf-patch-released-but-only-for.html
4 X Security Team. Adobe PDF patch released, but only for some. Thursday, March 12, 2009 by Mzer0. After weeks of swinging and missing on proper response. To a gaping security hole in its ever-present PDF Reader software, Adobe has finally shipped a patch but only for some affected users. SEE: Adobe swings and misses as PDF abuse worsens. The Adobe bulletin explains the severity. Only Adobe Reader 9 and Acrobat 9 is patched. Unofficial ‘patch’ for Adobe Reader, Acrobat zero-day. Apple Mac OS X.
4xsecurityteam.blogspot.com
4 X Security Team: Rigged podcasts can leak your iTunes username/password
http://4xsecurityteam.blogspot.com/2009/03/rigged-podcasts-can-leak-your-itunes.html
4 X Security Team. Rigged podcasts can leak your iTunes username/password. Thursday, March 12, 2009 by Mzer0. Hackers can create malicious podcasts to hijack usernames and passwords from Apple’s iTunes software. According to a warning from Apple, a “design issue” in the iTunes podcast feature can be abused via rigged audio files to cause an authentication dialog to be presented to the user. From that dialog, a hacker can hijack iTunes credentials and upload it to the podcast server. August 5, 2009 at 9:2...
4xsecurityteam.blogspot.com
4 X Security Team: December 2007
http://4xsecurityteam.blogspot.com/2007_12_01_archive.html
4 X Security Team. HITBSecConf2006 Malaysia : Marc Schonefeld - Pentesting Java/J2EE. Monday, December 31, 2007 by Mzer0. HITBSecConf2006 Malaysia : Jonathan Limbo - The world through the eyes of a. HITBSecConf2006 Malaysia : Philippe Biondi and Arnaud Ebalard - Scapy and IPv6. HITBSecConf2006 Malaysia : Carlos Sarraute and Javier Burroni - Neural Networks. HITBSecConf2006 Malaysia : Fabrice Marie - Application Intrusion Prevention. HITBSecConf2006 Malaysia : Paul Boehm - Taming Bugs. Saturday, December ...