May 4th, 2013 
Mourad Ben Lakhoua Video conferencing is now becoming a flexible way to have meeting over internet and some magazines are using these systems to record all activities at their shops. this way to track any violation or a problem in their markets. An exploit has been published for the Cisco Video Surveillance Operations Manager version 6.3.2 that allow an [...]
April 7th, 2013 Mourad Ben Lakhoua Microsoft announced as part of the traditional Patch Tuesday that it will release nine security bulletins. Two of them are considered critical and the first one is issued to fix vulnerabilities revealed at the last Pwn2Own hacking contest. Multiple browsers were subject to attacks during CanSecWest March 2013. Google Chrome, Firefox and Internet Explorer. Vupen [...]
Posted in Vulnerabilities, Vulnerabilities & attacks 
Tags: Microsoft, patch, Vulnerabilities & attacks, Vulnerability, windows 
No Comments » March 17th, 2013 Mourad Ben Lakhoua At Blackhat Europe 2013 in Amsterdam security researcher at Trend Micro revealed a collaborative honeypot project with Scada security team that was running fake ICS/Scada devices used in many critical infrastructure power and water plants. The honeypot were optimized and promoted on different search engines such as google to be found directly and trick attacker [...]
Posted in Malwares, Vulnerabilities, Vulnerabilities & attacks Tags: critical infrastructure, Honeypot, ICS, SCADA 1 Comment » March 10th, 2013 Mourad Ben Lakhoua Microsoft about to release a bunch of security patches for windows operating system. Seven patches are coming to fix four critical vulnerabilities that allow an attacker to execute malicious program on remote system by redirecting victims to a malicious website. First update is for Internet explorer which is required on all windows operating systems while [...]
March 9th, 2013 Mourad Ben Lakhoua Authentication bypass vulnerability has been discovered in sudo utility, the affected versions are Sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 inclusive. The security bug allows an attacker with a physical access to run commands without user’s password. UNIX sudo allows user to execute commands with root privilege which mean full administrator privileges on the [...]
Posted in Vulnerabilities, Vulnerabilities & attacks Tags: Authentication, Linux, Mac OSX, Sudo, UNIX, Vulnerabilities & attacks, Vulnerability No Comments » March 3rd, 2013 Mourad Ben Lakhoua One of the popular online services Evernote has been hacked this week. Unknown attacker gained access to a database for email addresses and passwords. The sensitive information is not yet published but it is always possible that attacker publish the data on internet. Evernote is a cloud based service that helps users to store all [...]
Posted in Password Security, Vulnerabilities & attacks Tags: breach, Breaches, Data Breaches, fraud, passwords, Security/Fraud No Comments » February 10th, 2013 Mourad Ben Lakhoua Microsoft has issued an advanced notification to fix several security vulnerabilities in windows operating system, Internet explorer web-browser, Office and the .NET framework. The Security bulletins for this month patch Tuesday are intended to eliminate 57 vulnerabilities in Microsoft products. Five of the twelve critical bulletins fix vulnerabilities that could allow an attacker to remotely [...]
