The goal of this project is to make virtual world a safer and better place without child pornography, major computer crime and RIAA.
Login As
You can log in if you are registered at one of these services:
Security Bulletins
Latest Malware Updates

Infostealer.Posteal

02/26/2015

Downloader.Busadom

02/26/2015

Trojan.Ladocosm

02/26/2015

SONAR.SuspDocRun

02/25/2015

SONAR.SuspHelpRun

02/25/2015

Russian hacker arrested in Cyprus

Russian hacker arrested in Cyprus

A citizen of Russia Dmitry Olegovich Zubakha was arrested in Cyprus on an international warrant, announced by a US Attorney. The 25-year old criminal was born in Moscow and is charged of conducting denial of service attacks on Amazon, Ebay and Priceline. According to official Ministry of Justice press-release the man is accused of “conspiracy to intentionally cause damage without authorization to a protected computer, and two counts of intentionally causing damage to a protected computer resulting in a loss of more than $5,000”. He is also charged with possession of 15 or more unauthorized access devices and aggressive identity theft.

“These cyber bandits do serious harm to our businesses and their customers. But the old adage is true: the arm of the law is long,” said Jenny A. Durkan, attorney who leads the Cybercrime and Intellectual Property Enforcement Committee of Justice Department. “This defendant could not hide in cyberspace, and I congratulate the international law enforcement agencies who tracked him down and made this arrest.”

On June 6 and on June 9, 2008 Zubakha allegedly conducted denial of service attacks against Amazon. In both cases the attacks prevented Amazon customers from accessing the service for several hours while the company employees were trying to reestablish normal functionality of the website. Zubakha and another hacker from Russia claimed responsibility for the disruptions on Amazon.com in specialized hacker forums.

“The investigation culminating in the arrest of Dmitry Zubakha by authorities in Cyprus was extremely complex. The apprehension of Zubakha is the result of a concerted effort by the Secret Service, the U.S. Attorney's Office for the Western District of Washington and the Seattle Police Department. I would also like to commend Amazon.com for its forthrightness and assistance in dealing with this series of computer network attacks which had the potential to adversely impact the company's ability to serve its customers,” said James Helminski, Special Agent in Charge of the U.S. Secret Service in Seattle.

If the hacker is extradited to the USA and if court confirms all the charges Zubakha might stay in prison for up to 27 years and pay $500 000 fine.

DoJ press release is accessible here.

(c) Naked Security


Security Advisories Database

Remote Code Execution Vulnerability in Microsoft OpenType Font Driver

A remote attacker can execute arbitrary code on the target system.

07/21/2015

SQL Injection Vulnerability in Piwigo

SQL inection vulnerability has been discovered in Piwigo.

02/05/2015

Cross-site Scripting Vulnerability in DotNetNuke

A cross-site scripting (XSS) vulnerability has been discovered in DotNetNuke.

02/05/2015

Cross-site Scripting Vulnerability in Hitachi Command Suite

A cross-site scripting vulnerability was found in Hitachi Command Suite.

02/02/2015

Denial of service vulnerability in FreeBSD SCTP RE_CONFIG Chunk Handling

An attacker can perform a denial of service attack.

01/30/2015

Denial of service vulnerability in Apache Traffic Server HTTP TRACE Max-Forwards

An attacker can perform a denial of service attack.

01/30/2015

Denial of service vulnerability in MalwareBytes Anti-Exploit "mbae.sys"

An attacker can perform a denial of service attack.

01/30/2015

Denial of service vulnerability in Linux Kernel splice

An attacker can perform a denial of service attack.

01/29/2015

Denial of service vulnerability in Python Pillow Module PNG Text Chunks Decompression

An attacker can perform a denial of service attack.

01/20/2015