Exploits vom 11.09.2019 um 02:00 Uhr | Quelle: securityfocus.com

---

ImageMagick CVE-2018-16750 Denial of Service Vulnerability

---

---

Weiterlesen

PoC vom 17.08.2019 um 22:52 Uhr | Quelle: 0day.today

---

---

---

Weiterlesen

PoC vom 17.08.2019 um 22:52 Uhr | Quelle: 0day.today

---

---

---

Weiterlesen

Linux Tipps vom 17.08.2019 um 22:41 Uhr | Quelle: reddit.com

---

submitted by /u/RepulsiveDish
[link] [comments]

---

---

Weiterlesen

IT Security Nachrichten vom 17.08.2019 um 22:40 Uhr | Quelle: news.softpedia.com

---

GNU/Linux developer Arne Exton informs Softpedia News about the availability of a new version of his RaspArch project, which lets users run the Arch Linux operating system on the tiny Raspberry Pi computers. RaspArch Build 190809 is now available to download and it is especially made for the recently released Raspberry Pi 4 Model B computer, which features a Quad-Core 1.5GHz 64-bit ARM Cortex-A72 CPU, up to 4GB RAM, and on-board dual-band 802.11 b/g/n/ac Wi-Fi and Bluetooth 5.0 (BLE). The best thing about the new Raspberry Pi 4 model is that it supports up to 4K video resolutions via two micro HDMI ports. The tiny computer also comes with two USB 3.0 and USB 2.0 ports, an extended 40-pin GPIO header, MIPI Camera and Display ports, and true Gigabit Ethernet. RaspArch now lets you run Arch Linux on the Raspberry Pi 4 With the new RaspArch Build 190809 release, you can now install and run the latest Arch Linux operating system on the Raspberry Pi 4 ...

---

---

Weiterlesen

IT Security Nachrichten vom 17.08.2019 um 22:34 Uhr | Quelle: tech.slashdot.org

---

"JPEG XL looks very promising as a next gen replacement for JPEG, PNG and GIF," writes icknay (Slashdot reader #96,963): JPEG was incredibly successful by solving a real problem with a free and open format. Other formats have tried to replace it, notably HEIF which will never by universal due to its patent licensing. JPEG XL combines all the modern features, replacing JPEG PNG and GIF and has free and open licensing. The linked slides from Jon Sneyers review the many other attempts at replacing JPEG plus the obligatory XKCD standards joke.

Read more of this story at Slashdot.

---

---

Weiterlesen

Malware / Trojaner / Viren vom 17.08.2019 um 22:20 Uhr | Quelle: virusradar.com

---

Update database signature 19872(20190817)

---

---

Weiterlesen

Nachrichten vom 17.08.2019 um 22:00 Uhr | Quelle: feedproxy.google.com

---

Google hat in den vergangenen Wochen und Monaten dafür gesorgt, dass der Großteil der eigenen Apps mittlerweile entweder einen Dark Mode unterstützt oder diesen bereits selbst innehat. Weiterhin wird man mit Android Q einen systemweiten Dark Mode einführen, da ist...

-> Zum Beitrag Google Playground für Android ab sofort mit Dark Mode

-> Zum Blog Caschys Blog

Unser Feedsponsor:

---

---

Weiterlesen

Windows Tipps vom 17.08.2019 um 21:58 Uhr | Quelle: feeds.windowscentral.com

---

What you need to know Microsoft and Chips Ahoy have partnered up ahead of Gears 5's September 20 release. Marked Chips Ahoy cookie packs feature exclusive in-game Gears 5 items. Gears 5 is on track to hit store shelves on September 10, and as with any blockbuster game launch, we have an accompanying snack promotion. From Halo's love for Mountain Dew to Assassin's Creed's perfect pairing with Totino's Pizza Rolls, Microsoft has unveiled an (unexpected) collaboration with Chips Ahoy for its gritty shooter. Cracking open cookie packs will soon net you exclusive in-game Gears 5 content, alongside entry into prize package sweepstakes. Gears 5-marked Chips Ahoy packages are slated to roll out over the weeks ahead, via redeemable codes planted through branded packs. This U.S.-only promotion grants a pool of exclusive content across the game and broader Xbox One ecosystem. Gears 5 x Chips Ahoy! = exclusive in-game content AND cookies? Sweet. pic.twitter.com/sZorMk6mTo ...

---

---

Weiterlesen

Programmierung vom 17.08.2019 um 21:58 Uhr | Quelle: channel9.msdn.com

---

This week on Channel 9, Christina is coming to terms with the end of summer by getting caught up with the latest dev news, including:

• [00:31] Microsoft Ignite Registration

• [01:06] .NET Core 3.0 Preview 8

• [01:49] Visual Studio 2019 16.3 Preview 2 and Visual Studio for Mac 8.3 Preview 2

• [02:23] Xamarin Updates in Visual Studio 2019 and Visual Studio for Mac Preview

• [02:34] Tips and Tricks for Linux Development with WSL and VS Code

• [02:54] VS Code Shortcuts Guide

• [03:10] Add VS Code Recommendations to OSS Projects

• [03:36] Out-GridView Comes to PowerShell Core and the GraphicalTools GitHub repo

• [04:14] GitHub Actions for Azure Preview and the Azure Actions repo

• [05:04] WebView2Browser and the GitHub repo and docs

• [05:52] The Cloud Native Show

• [06:05] The AI Show

• [06:10] The IoT Show

• [06:27] Christina's Pick of the Week:New 'Zine Paged Out!

Please leave a comment or email us at [email protected]. 

Follow @CH9 

Follow @CH9 

Create a Free Account (Azure)

 

---

---

Weiterlesen

Video | Youtube vom 17.08.2019 um 21:57 Uhr | Quelle: youtube.com

---

---

---

Weiterlesen

Exploits vom 17.08.2019 um 21:49 Uhr | Quelle: vuldb.com

---

A vulnerability was found in Mandriva QEMU 0.9.0 (Virtualization Software). It has been rated as critical. Affected by this issue is an unknown code. Upgrading eliminates this vulnerability. A possible mitigation has been published 2 months after the disclosure of the vulnerability.

---

---

Weiterlesen

Hacking vom 17.08.2019 um 21:49 Uhr | Quelle: breachforums.com

---

This little bot will scrap 100 WebCamXP 5 cams and upload the screenshot to Imgbb account.

How to use:
1) Download the bot
2) Launch the html file and wait
3) Visit https://hacxx-under-2.imgbb.com to check your uploads

Note: Recomended to execute in Brave Browser.
--> http://bit.ly/_brave_browser

How to view images?
https://hacxx-under-2.imgbb.com

Download:
http://nitroflare.com/view/73435E2EDED09...er_Bot.rar

Virus Scan:
https://www.virustotal.com/gui/file/7654.../detection

---

---

Weiterlesen

Exploits vom 17.08.2019 um 21:43 Uhr | Quelle: vuldb.com

---

A vulnerability, which was classified as problematic, was found in MailMarshal SMTP 6.0.3.8/6.3.0.0. This affects an unknown code block. Upgrading eliminates this vulnerability.

---

---

Weiterlesen

Exploits vom 17.08.2019 um 21:35 Uhr | Quelle: vuldb.com

---

A vulnerability was found in GraphicsMagick up to 1.2.18 (Image Processing Software). It has been rated as problematic. This issue affects the function getimagecharacteristics. Upgrading to version 1.1.10 eliminates this vulnerability. A possible mitigation has been published 3 months after the disclosure of the vulnerability.

---

---

Weiterlesen

IT Security Nachrichten vom 17.08.2019 um 21:34 Uhr | Quelle: tech.slashdot.org

---

In July Google was sued by Tulsi Gabbard, one of 23 Democrats running for president, after Google mistakenly suspended her advertising account. "I believe I can provide assistance on where to focus your discovery efforts," posted former YouTube/Google senior software engineer Zach Vorhies (now a harsh critic of Google's alleged bias against conservatives). He says he witnessed the deactivation of another high-profile Google account triggered by a malicious third party. I had the opportunity to inspect the bug report as a full-time employee. What I found was that Google had a technical vulnerability that, when exploited, would take any gmail account down. Certain unknown 3rd party actors are aware of this secret vulnerability and exploit it. This is how it worked: Take a target email address, change exactly one letter in that email address, and then create a new account with that changed email address. Malicious actors repeated this process over and over again until a network of spoof accounts for Jordan B. Peterson existed. Then these spoof accounts started generating spam emails. These email-spam blasts caught the attention of an AI system which fixed the problem by deactivating the spam accounts... and then ALSO the original account belonging to Jordan B. Peterson! To my knowledge, this bug has never been fixed. "Gabbard, however, claims the suspension was based on her criticism of Google and other major tech companies," reports the Verge. But they also quote the campaign as saying that Gmail "sends communications from Tulsi into people's Spam folders at a disproportionately high rate." "Google may blame this on automated systems, but the reality is that there is no transparency whatsoever, which makes it difficult to determine the truth."

Read more of this story at Slashdot.

---

---

Weiterlesen

Hacking vom 17.08.2019 um 21:29 Uhr | Quelle: zone-h.org

---

http://www.irennorte.gob.pe/contador.txt notified by limit[ed]

---

---

Weiterlesen

Exploits vom 17.08.2019 um 21:26 Uhr | Quelle: vuldb.com

---

A vulnerability was found in Red Hat Fedora 9. It has been classified as problematic. Affected is some unknown processing. Upgrading to version 9 eliminates this vulnerability. A possible mitigation has been published even before and not after the disclosure of the vulnerability.

---

---

Weiterlesen

Exploits vom 17.08.2019 um 21:17 Uhr | Quelle: vuldb.com

---

A vulnerability, which was classified as critical, was found in Linux Kernel 2.6.26.3 (Operating System). This affects the function sbni_ioctl. Upgrading eliminates this vulnerability. A possible mitigation has been published 2 months after the disclosure of the vulnerability.

---

---

Weiterlesen

Linux Tipps vom 17.08.2019 um 21:17 Uhr | Quelle: reddit.com

---

submitted by /u/vorlontech
[link] [comments]

---

---

Weiterlesen

IT Security Nachrichten vom 17.08.2019 um 21:15 Uhr | Quelle: latesthackingnews.com

---

Once again, the banking sector suffered a cyber attack on its IT infrastructure. This time, the victim turns out to

European Central Bank Shut Down BIRD Website Following Cyber Attack on Latest Hacking News.

---

---

Weiterlesen

Exploits vom 17.08.2019 um 21:13 Uhr | Quelle: vuldb.com

---

A vulnerability was found in Red Hat Enterprise Linux up to 5 (Operating System) and classified as problematic. Upgrading eliminates this vulnerability. A possible mitigation has been published even before and not after the disclosure of the vulnerability.

---

---

Weiterlesen

Exploits vom 17.08.2019 um 21:07 Uhr | Quelle: vuldb.com

---

A vulnerability was found in MPlayer (Multimedia Player Software). It has been rated as very critical. This issue affects the function stream_read of the file demux_real.c of the component Real Demuxer. Upgrading eliminates this vulnerability. A possible mitigation has been published 2 days after the disclosure of the vulnerability. Furthermore it is possible to detect and prevent this kind of attack with TippingPoint and the filter 8899.

---

---

Weiterlesen

Nachrichten vom 17.08.2019 um 21:02 Uhr | Quelle: google.com

---

Apple weist Kunden, die ihren iPhone-Akku nicht bei Apple selbst oder einem autorisierten Service Provider getauscht haben, auf mögliche Sicherheitsrisiken durch den unautorisierten Tausch hin. Außerdem können Kunden nach einem solchen Tausch den ...

---

---

Weiterlesen

Exploits vom 17.08.2019 um 20:59 Uhr | Quelle: vuldb.com

---

A vulnerability was found in Ruby on Rails (Programming Language Software). It has been classified as critical. Affected is an unknown part of the component ActiveRecord. Upgrading to version 0.5.0 eliminates this vulnerability. A possible mitigation has been published 3 weeks after the disclosure of the vulnerability.

---

---

Weiterlesen

Exploits vom 17.08.2019 um 20:51 Uhr | Quelle: vuldb.com

---

A vulnerability classified as problematic has been found in WordPress (Content Management System). This affects an unknown part of the component Password Generator. Upgrading eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is ready for download at wordpress.org. The best possible mitigation is suggested to be upgrading to the latest version. A possible mitigation has been published 2 months after the disclosure of the vulnerability. Furthermore it is possible to detect and prevent this kind of attack with TippingPoint and the filter 6408.

---

---

Weiterlesen

Nachrichten vom 17.08.2019 um 20:51 Uhr | Quelle: feedproxy.google.com

---

Was gibt es eigentlich Neues bei Huawei? Die Gnadenfrist der USA läuft bekanntlich aus – und bisher ist es so, dass es keine Neuigkeiten gibt. Zwar erneuerte Huawei das Zukunftsversprechen für Bestandsgeräte, was aber in der Zukunft für Neugeräte liegt,...

-> Zum Beitrag Huawei: Weitere 90 Tage Gnadenfrist im Handelsstreit

-> Zum Blog Caschys Blog

Unser Feedsponsor:

---

---

Weiterlesen

Nachrichten vom 17.08.2019 um 20:50 Uhr | Quelle: google.com

---

Die Apple Watch könnte bald auch wieder in einer Keramik-Edition angeboten werden. Diese Varianten hatte Apple mit der Series 4 aus dem Portfolio gestrichen. Zusätzlich ist auch eine Apple Watch mit Titangehäuse denkbar, wie nun neue Hinweise in ...

---

---

Weiterlesen

Exploits vom 17.08.2019 um 20:46 Uhr | Quelle: vuldb.com

---

A vulnerability classified as very critical was found in Adobe Illustrator Cs2 (Image Processing Software). This vulnerability affects some unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

---

---

Weiterlesen

IT Security Nachrichten vom 17.08.2019 um 20:39 Uhr | Quelle: bleepingcomputer.com

---

In an update to the Windows 10 Health Dashboard, Microsoft has confirmed that they are working on a fix for the 0x80073701 error that users are receiving when installing new v1903 updates. [...]

---

---

Weiterlesen

Exploits vom 17.08.2019 um 20:37 Uhr | Quelle: vuldb.com

---

A vulnerability has been found in lighttpd up to 1.1.1 (Web Server) and classified as problematic. This vulnerability affects the function http_request_parse of the file request.c. Upgrading to version 1.1.2 eliminates this vulnerability. A possible mitigation has been published 2 weeks after the disclosure of the vulnerability.

---

---

Weiterlesen

IT Security Nachrichten vom 17.08.2019 um 20:35 Uhr | Quelle: news.softpedia.com

---

The Document Foundation announced the release of the sixth maintenance update to the LibreOffice 6.2 open-source and cross-platform office suite series, marking it as ready for mainstream users and enterprise deployments. Coming five weeks after the release of LibreOffice 6.2.5, the LibreOffice 6.2.6 maintenance update is here with months of back-ported fixes and all the latest security patches to make your LibreOffice experience more stable and reliable. That's why, The Document Foundation now recommends the LibreOffice 6.2 series to users in production environments. LibreOffice 6.2.6 includes a total of 44 changes. "The Document Foundation announces LibreOffice 6.2.6, the sixth minor release of the LibreOffice 6.2 family, targeted at users in production environments. All users of LibreOffice 6.1.x and LibreOffice 6.2.x versions should upgrade immediately for enhanced security, as t...

---

---

Weiterlesen

IT Security Nachrichten vom 17.08.2019 um 20:34 Uhr | Quelle: yro.slashdot.org

---

Late Christmas Eve, 1966, a retired British army major named Paddy Roy Bates piloted a motorboat seven miles off the coast of England to an abandoned anti-aircraft platform "and declared it conquered," writes Pulitzer Prize-winning author Ian Urbina. Bates used it as a pirate radio station, sometimes spending several months there while living on tins of corned beef, rice pudding, flour, and scotch. But then he declared it to be the world's tiniest maritime nation, writes Urbina, adding that in the half-century to come, "Sealand" was destined to become "a thumb in the eye of international law." Though no country formally recognizes Sealand, its sovereignty has been hard to deny. Half a dozen times, the British government and assorted other groups, backed by mercenaries, have tried and failed to take over the platform by force. In virtually every instance, the Bates family scared them off by firing rifles in their direction, tossing gasoline bombs, dropping cinder blocks onto their boats, or pushing their ladders into the sea. Britain once controlled a vast empire over which the sun never set, but it's been unable to control a rogue micronation barely bigger than the main ballroom in Buckingham Palace.... In recent years, its permanent citizenry has dwindled to one person: a full-time guard named Michael Barrington... In the decades since its establishment, Sealand has been the site of coups and countercoups, hostage crises, a planned floating casino, a digital haven for organized crime, a prospective base for WikiLeaks, and myriad techno-fantasies, none brought successfully to fruition, many powered by libertarian dreams of an ocean-based nation beyond the reach of government regulation, and by the mythmaking creativity of its founding family. I had to go there. The article also acknowledges the Seasteading Institute founded by Google software engineer Patri Friedman and backed by Peter Thiel -- as well as the idea of offshore-but-online services in Neal Stephenson's Cryptonomicon and Google's real-world plans for offshore data centers cooling their servers with seawater. Urbina also tells the story of HavenCo, a grand plan for a Sealand-based data empire which ultimately had trouble powering their servers, alienating their gambling-industry customers with frequent outages. And in addition, one of the Bates' family says that "we also didn't see eye to eye with the computer guys about what sort of clients we were willing to host" -- and they objected to plans to illegally rebroadcast DVDs. "For all their daring, the Bates family was wary of antagonizing the British and upsetting their delicately balanced claim to sovereignty." The article is adapted from Urbina's upcoming book The Outlaw Ocean: Journeys Across the Last Untamed Frontier (to be released Tuesday).

Read more of this story at Slashdot.

---

---

Weiterlesen

Nachrichten vom 17.08.2019 um 20:33 Uhr | Quelle: googlewatchblog.de

---

Wenn Googles Marketing ein entsprechendes Budget zur Verfügung hat, kommen immer wieder ansehnliche Werke heraus, die man einfach unterhaltsam finden muss und ihren Zweck nicht verfehlen. Jetzt bekommt das Chrome OS-Team seinen ganz großen Auftritt und darf den Menschen in einem gut dreiminütigen Werbeclip unter dem Tiel „Switch to Chromebook“ den Wechsel zu Chrome OS […]
Google verspottet Windows: Neuer Chromebook-Werbespot blamiert Microsoft Windows – sehenswert — GoogleWatchBlog
GoogleWatchBlog auf MeWe — GoogleWatchBlog auf Facebook 

---

---

Weiterlesen

Exploits vom 17.08.2019 um 20:30 Uhr | Quelle: vuldb.com

---

A vulnerability classified as critical has been found in Symantec NetBackup Server up to 5.0 (Backup Software). Affected is an unknown functionality of the component Administration. Upgrading to version 5.1 eliminates this vulnerability. A possible mitigation has been published before and not just after the disclosure of the vulnerability.

---

---

Weiterlesen