Tag: Exploiting | Page 17

The CIA should help vendors patch the flaws it was exploiting

March 10, 2017/in Mobile Security

The CIA exploits exposed this week reveal that the agency does hacking just like criminals do, including buying exploits from black-hat researchers who sell their wares on the dark web.

It’s also a demonstration of bad security on the part of the CIA, which apparently entrusted the entire portfolio to both agency employees and contractors, one of whom turned out not to be trustworthy and passed them on to Wikileaks.

A criminal investigation into who that was is underway so the CIA is rightfully busy with that, but it should try to find time to help out the vendors whose gear was exploited patch the flaws quickly. Before the leak, these attacks were not widely known. But now that they are, they have little value to the CIA anymore, so the CIA should help shore up the vulnerabilities.

To read this article in full or to leave a comment, please click here

Network World Tim Greene

North Korea is likely behind attacks exploiting a Korean word processing program

September 10, 2015/in Computer Security

North Korea is likely behind cyberattacks that have focused on exploiting a word processing program widely used in South Korea, security firm FireEye said Thursday in a report.

The proprietary program, called Hangul Word Processor, is used primarily in the south by the government and public institutions.

The vulnerability, CVE-2015-6585, was patched three days ago by its developer Hancom.

FireEye’s conclusion is interesting because only a handful of attacks have been publicly attributed to the secretive nation, which is known to have well-developed cyber capabilities.

To read this article in full or to leave a comment, please click here

Network World Security

Anatomy of a malicious email: Crooks exploiting recent Word hole

September 8, 2015/in Internet Security

Crooks have recently been using CVE-2015-1641, a Word bug that was patched in April 2015. We explain why you really, really want to patch!
Naked Security – Sophos

Targeted attacks spotted in the wild exploiting Windows XP zero-day

December 3, 2013/in Internet Security

Microsoft can preach about the evils of clinging to Windows XP all that the company wants, but the desktop operating system market share for November 2013 still shows Windows XP at over 31%, according to NetMarketShare. Windows 7 is the most popular OS, at 46.6%.
Ms. Smith’s blog

Tag Archive for: Exploiting