Security Alerts & News
by Tymoteusz A. Góral

History
#1773 Exploit company exodus sold Firefox zero-day earlier this year
This week, an exploit was publicly distributed that could break into the computers of those using the Tor Browser or Firefox. The Tor Project and Mozilla patched the underlying vulnerability on Wednesday.

One research company gave details of the exploit method used to a defensive cybersecurity firm last year so it could protect its own clients’ systems. In turn, the exploit research company went on to sell details of the recent Firefox vulnerability to another customer for offensive purposes this year, according to two sources.

The case highlights the often antithetical relationship between companies that research and develop exploits, and those who maintain the affected software. But it also shows an instance of a company selling related exploit information to both defensive and offensive customers.

Back in December 2015, cybersecurity firm Fortinet announced it had added an intrusion detection system (IDS) signature for a Firefox zero-day; that is, a security issue unknown to Mozilla which develops Firefox. IDS signatures are used to detect particular exploits or types of attack.
Read more
#1775 New large-scale DDoS attacks follow schedule
#1774 One bit to rule a system: analyzing CVE-2016-7255 exploit in the wild
#1773 Exploit company exodus sold Firefox zero-day earlier this year
#1772 Bypassing CSP using polyglot JPEG
#1771 A beginner’s guide to beefing up your privacy and security online
#1770 New SmsSecurity variant roots phones, abuses accessibility features and TeamViewer
#1769 Google fixes 12 high-severity flaws In Chrome browser
#1768 Buffer overflow exploit can bypass Activation Lock on iPads running iOS 10.1.1
#1767 Amazon offers DDoS protection with Shield
#1766 Fake Apple chargers fail safety tests
#1765 Analysis of multiple vulnerabilities in AirDroid
#1764 UK's new Snoopers' Charter just passed an encryption backdoor law by the backdoor
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12