OpenVAS image for Docker on Ubuntu
A Docker container for OpenVAS on Ubuntu. By default, the latest images includes the OpenVAS Base as well as the NVTs and Certs required to run OpenVAS […] Continue reading OpenVAS image for Docker on Ubuntu
Author Archives: Kellep Charles
WP GDPR Compliance WordPress Plug-in Exploited
A WordPress plug-in known as the WP GDPR Compliance plug-in contains a dangerous privilege escalation vulnerability that attackers have been actively exploiting to compromise websites. […] Continue reading WP GDPR Compliance WordPress Plug-in Exploited
Video: General Data Protection Regulation (GDRP) – The law that lets Europeans take back their data from big tech companies
Tech companies’ reign over users’ personal data has run largely unchecked in the age of the internet. Europe is seeking to end that with a new law […] Continue reading Video: General Data Protection Regulation (GDRP) – The law that lets Europeans take back their data from big tech companies
Mitigating Buffer Overflow Attacks in Linux/Unix
A buffer overflow is the most common and the most serious threat to Linux/Unix operating systems. Buffer overflows occur when code running in unprotected memory in a buffer overwrites memory in an adjacent location. […]
The post Mitigating Buffer Ove… Continue reading Mitigating Buffer Overflow Attacks in Linux/Unix
Mac OS X Security Keychain
The keychain is a secure database store for passwords and certificates and is created for each user account on Mac OS X. The system software itself uses keychains for secure storage. […]
The post Mac OS X Security Keychain appeared first on Security… Continue reading Mac OS X Security Keychain
SSD Encryption from Crucial and Samsung is not secure Exposes Data
The researchers examined multiple SSDs, including Crucial and Samsung, some of which they found could be unlocked with any password if the password validation routine in RAM was modified through a standard JTAG debugging interface. […] Continue reading SSD Encryption from Crucial and Samsung is not secure Exposes Data
Information Commissioner Calls for Regulation of Social Media Following Cambridge Analytica scandal
Information commissioner calls for regulation of social media following Cambridge Analytica scandal […] Continue reading Information Commissioner Calls for Regulation of Social Media Following Cambridge Analytica scandal
Ruby2.3 Security Update – CVE-2018-16395 CVE-2018-16396
Several vulnerabilities have been discovered in the interpreter for the Ruby language. The Common Vulnerabilities and Exposures project identifies the following problems: […] Continue reading Ruby2.3 Security Update – CVE-2018-16395 CVE-2018-16396
UK’s Information Commissioner’s Office (ICO) Slap Fines on Facebook and Equifax
Facebook was fined £500,000 by the UK’s Information Commissioner’s Office (ICO) for its role in the Cambridge Analytica data scandal. […]
The post UK’s Information Commissioner’s Office (ICO) Slap Fines on Facebook and Equifax appeared fir… Continue reading UK’s Information Commissioner’s Office (ICO) Slap Fines on Facebook and Equifax
Cisco WebEx Meetings Server XML External Entity (CVE-2018-18895)
Cisco Webex Meetings Server includes a version of Castor XML that is affected by XXE. Because of that Cisco WebEx Meetings Server prior to versions 2.8MR3 and 3.0MR2 patch 1 are affected from XXE vulnerability. […] Continue reading Cisco WebEx Meetings Server XML External Entity (CVE-2018-18895)