2013-10-18 - [slackware-security] hplip (SSA:2013-291-01)

2013-10-18 - [slackware-security] libtiff (SSA:2013-290-01)

2013-10-14 - [slackware-security] xorg-server (SSA:2013-287-05)

2013-10-14 - [slackware-security] libgpg-error (SSA:2013-287-04)

2013-10-14 - [slackware-security] gnutls (SSA:2013-287-03)

Downloader.Busadom!g1

Infostealer.Posteal

Downloader.Busadom

Trojan.Ladocosm

SONAR.SuspDocRun

SONAR.SuspHelpRun

W32.Tempedreve.D!inf

SONAR.PUA!AlnadInsta

SONAR.Infostealer!g5

SONAR.Infostealer!g4

Microsoft to pay up to $100,000 for new vulnerabilities in Windows 8.1 products

“New Bounty Programs” for finding flaws in Windows 8.1 Preview starts on June 26.

China to establish agency on cyber diplomacy

Ministry of Foreign Affairs of China told about creating secretariat to deal with diplomatic issues in the field of cyber security.

About 12% small businesses are ready to protect their customers’ personal data

Strengthening cybersecurity is hindered by a lack of funds and lack of awareness of the possible consequences of being compromised.

Hackers paralyzed the U.S. NSA site for 13 hours

In such a manner hackers expressed their outrage at the usage of the spy program PRISM by the govenment.

Assange: Google is an arm of US government

Assange is sure that the representatives of Google - are agents of the State Department.

France disconnects torrent users from the internet

Authorities started to apply stricter penalties, which are covered in the antipiracy law, adopted in 2010.

Microsoft provides security services with information about existing flaws before the release of patches

Many other U.S. telecommunication companies provide security services with information on voluntary basis.

Anonymous initiated a campaign against the government of Greece

Hackers broke into the website of one of the courts of Athens and broadcasted on it the programs from the Greek radio and television ERT.

Experts now know the price of user’s personal data

The cost may vary due to importance of collected information.

Edward Snowden: USA has been hacking China since 2009

For the several past years, USA has organized hundreds of cyberattacks against targets in China.

Gartner: By 2016, the global market of cyber security will reach $ 86 billion

Formation of the market can be carried out basing on three different tendencies: mobile security, “big data” and sophisticated targeted attacks.

Edward Snowden wants to reveal more information about PRISM

Snowden gave the Guardian some really important material, and it will be published really soon.

British police offers ‘kill switch’ to disable stolen mobile handsets

Emergency lock button makes the device unusable.

Fraudsters earned $ 200 mln, selling stolen credit card data

Criminals have created a special web portal for their operations.

Windows 8.1 will provide an option to secure folders with fingerprints

The operating system will recognize fingerprints without any additional software.

Google developer posted description of a 0-day vulnerability in Windows

Researcher asked other specialists to find a way to use the flaw.

Russia Today hacked by AntiLeaks

As the result of attack, three websites became unavailable.

Researchers will hack iOS devices, using a modified charger

The hack will be demonstrated at the Black Hat security conference by the team from Georgia Institute of Technology.

Jailbreak creator advised Apple to create an alternative version of iOS 7

According to the developers, in this case hackers won’t need to look for vulnerabilities to create a jailbreak and Apple representatives – to fix them.

Major internet-companies won’t spy on British users

Companies state that Theresa May’s plan is too expensive and contentious.

Remote Code Execution Vulnerability in Microsoft OpenType Font Driver

A remote attacker can execute arbitrary code on the target system.

Multiple Vulnerabilities in Linux kernel

SQL Injection Vulnerability in Piwigo

SQL inection vulnerability has been discovered in Piwigo.

Cross-site Scripting Vulnerability in DotNetNuke

A cross-site scripting (XSS) vulnerability has been discovered in DotNetNuke.

Cross-site Scripting Vulnerability in Hitachi Command Suite

A cross-site scripting vulnerability was found in Hitachi Command Suite.

Denial of service vulnerability in FreeBSD SCTP RE_CONFIG Chunk Handling

An attacker can perform a denial of service attack.

Denial of service vulnerability in Apache Traffic Server HTTP TRACE Max-Forwards

An attacker can perform a denial of service attack.

Denial of service vulnerability in MalwareBytes Anti-Exploit "mbae.sys"

An attacker can perform a denial of service attack.

Denial of service vulnerability in Linux Kernel splice

An attacker can perform a denial of service attack.

Denial of service vulnerability in Python Pillow Module PNG Text Chunks Decompression

An attacker can perform a denial of service attack.