0

TA16-144A: WPAD Name Collision Vulnerability

May 23, 2016 / in Uncategorized

Original release date: May 23, 2016 Systems Affected Windows, OS X, Linux systems, and web browsers with WPAD enabled Overview Web Proxy Auto-Discovery (WPAD) Domain Name System (DNS) queries that are intended for resolution on private or enterprise DNS servers have been observed reaching public DNS servers [1]. In combination with the New generic Top…

Read More
0

TA16-132A: Exploitation of SAP Business Applications

May 11, 2016 / in Uncategorized

Original release date: May 11, 2016 Systems Affected Outdated or misconfigured SAP systems Overview At least 36 organizations worldwide are affected by an SAP vulnerability [1]. Security researchers from Onapsis discovered indicators of exploitation against these organizations’ SAP business applications. The observed indicators relate to the abuse of the Invoker Servlet, a built-in functionality in…

Read More
0

Latest Intelligence for April 2016

May 6, 2016 / in Uncategorized

Our latest intelligence reveals Nuclear exploit kit comprised 42 percent of all web attacks, and 71 percent of all social scams spread through manual sharing. Twitter Card Style:  summary read more Source: Symantec

Read More