Security Alerts & News
by Tymoteusz A. Góral

History
#959 BadTunnel bug hijacks network traffic, affects all Windows versions
The research of Yang Yu, founder of Tencent's Xuanwu Lab, has helped Microsoft patch a severe security issue in its implementation of the NetBIOS protocol that affected all Windows versions ever released.

Yu says the attacker can leverage this vulnerability to pass as a WPAD or ISATAP server and redirect all the victim's network traffic through a point controlled by the attacker.

By network traffic, Yu refers to all traffic, not just Web HTTP and HTTPS. This includes OS updates, software upgrades, Certificate Revocation List updates via Microsoft's Crypto API, and other OS maintenance operations.

"It does not require the attacker [to] reside in the same network," Yu writes in a technical preview offered to Softpedia. "The attack can even succeed when there are firewall and NAT devices in between."
Read more
#963 The average cost of a data breach is now $4 million
#962 FBI raids spammer outed by KrebsOnSecurity
#961 Cisco won’t patch critical RV wireless router vulnerability until Q3
#960 Like macros before it, attackers shifting to OLE to spread malware
#959 BadTunnel bug hijacks network traffic, affects all Windows versions
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12