2011-09-20

2011-09-14

Microsoft leaks patch info four days early

Usually Microsoft rolls out their bulletins, with details around what vulnerabilities addressed, along with the patches itself. The rationale is, this info can be used by the hackers to exploit the vulnerabilities. In fact it is a known fact that malicious activities increase immediately after MS's patch Tuesday (called exploit Wednesday), where hackers try to break into any unpatched machine they can find.

So, now MS has committed the blunder of rolling out their bulletin four days in advance, which will give all the trouble makers a bigger window to try and break into the Windows machines.

2011-09-06

Attack on DNS - NetNames

This is pretty upsetting... A compromised DNS, would render all the security controls of a website useless. The website will be totally at the mercy of the attacker

HDFC Bank Hacked

HDFC Bank Database Hacked by zSecure team using SQL injection vulnerability