Java 7 Zero Day Vulnerability

Earlier this week infosec researcher Esteban Guillardoy¬†unveiled details of an unpatched vulnerability for Oracle’s Java 7 software. This vulnerability is being actively exploited in the wild and has been implemented in various exploit toolkits such as Metasploit and BlackHole....

Companies go on the Offensive

Some businesses are starting to respond more aggressively to cyber attacks, even launching retaliatory attacks against their attackers. This article explores why this is bad policy.

Microsoft RDP Vulnerability Wormable (MS12-036)

Yesterday Microsoft released their June 2012 security bulletin with a total of 7 advisories. Three of these are rated as critical and one in particular appears to be the type of vulnerability that could be exploited with a worm. MS12-036 addresses a vulnerability in the Remote Desktop...

OpenX Releases Patch for CSRF Vulnerability

OpenX has released a patch for a CSRF vulnerability that is being actively exploited.

New PHP Bug Allows Remote Code Execution

A new vulnerability has been discovered in PHP that allows attackers to compromise websites that use this popular scripting language.