vBulletin Exploit - Perhaps yet another reason why security should not be left in the hands of the "end user?" by Rollins Orlu Oct 17, 2013 Security You probably already heard/read about attacks compromising websites using a "security weakness in sites powered by the forum vBulletin." In case you missed it, there's a really good post about this on Brian Krebs' websi… Read more
vBulletin Vulnerability and Malware Exploit by Rollins Orlu Jul 6, 2013 Security VBulletin is a publishing suite that allows users create and publish a variety of content, including: forums, blogs, and polls. If you currently use an older version of this application on your website, you might be ope… Read more
Wordpress 3.5.2 Maintenance and Security Release by Rollins Orlu Jun 22, 2013 Security Wordpress, yesterday, announced the release of version 3.5.2 -- a maintenance and security release that fixes several issues in the Wordpress software. This update contains fixes for seven (7) security issues: Server-si… Read more
Running out of disk space? How to check what is using up server space in Linux by Rollins Orlu Apr 22, 2013 Security If there is one thing you will surely be confronted with as a server administrator, it's the issue of disk space being used on on the server. Every day use of your server involves reading and writing data to different p… Read more
Global Brute Force attack on Wordpress Web sites by Rollins Orlu Apr 12, 2013 Security Reports are making the rounds of an automated, highly distributed attack on Wordpress installations across the globe. From all indications, the attack is (very) well organized and completely distributed; over 90,000 IP … Read more
Protecting your Organization against "Acts of God" by Rollins Orlu Mar 13, 2013 Security Several factors conspire to threaten the security of information systems within an organization, including: deliberate attacks such as theft, sabotage, vandalism and hacking, and accidental events such as technical soft… Read more
Employees: the "hidden" threat by Rollins Orlu Feb 28, 2013 Security Information security professionals are taught that employees are the greatest threat to an organization's security. The argument behind this is based on the precept that because employees have inside information about a… Read more
Fake Java update scheme uncovered by Rollins Orlu Jan 22, 2013 Security It would seem that Malware developer are already taking advantage of Java's increasingly popular security vulnerabilities. Following the zero-day Java exploit, a malware campaign has been uncovered that poses as a Java … Read more
Zero-day vulnerability in Java plugin could leave your PC infected by Rollins Orlu Jan 11, 2013 Security A previously unknown vulnerability has been detected that allows an attacker to “silently” install malicious programs that infect computers running the Java plugin with malware. From all indications, it appears the vuln… Read more
