21 May 2014

eBay Hacked: Data Breached Compromises 150 Million Accounts

eBay has asked 150 million customers to change their passwords after detecting they were victim to a cyber attack several months ago. The breach included email, address, phone number, birthdate and encrypted passwords. The company stated that there is no indicator that financial information was compromised and that that data

28 Apr 2014

Exploit Tool Targeting Vulnerabilities in McAfee ePolicy Orchestrator Released

A new exploit tool has been released, specifically built to attack McAfee’s ePolicy Orchestrator (ePO). The exploit targets two vulnerabilities (CVE-2013-0140 and CVE-2013-0141) found in McAfee ePO versions 4.6.5 and earlier. The attacker must be on the local network in order to exploit these vulnerabilities. The exploit tool allows an

27 Apr 2014

Zero Day Exploit Targeting Internet Explorer (CVE-2014-1776) No Patch Available

A new zero day exploit targeting Internet Explorer is active and in the wild being used by attackers. The exploit targets a vulnerability in Internet Explorer and there is currently no available patch for the exploit. The vulnerability affects versions 6-11, however the active exploit is targeting 9-11. The group

14 Apr 2014

Heart Attack: Detecting Heartbleed Exploits in Real-Time

The OpenSSL Heartbleed vulnerability is proving to be one of the bigger vulnerabilities the security community has seen. As vendors and administrators scramble to patch their systems and users struggle to identify what sites are safe to use, hackers are taking full advantage of the vulnerability. Tripwire’s VERT team has