By now you will have no-doubt heard of the “POODLE” vulnerability, or “Padding Oracle On Downgraded Legacy Encryption”.  Major security standards have, in response to POODLE, advised the discontinuation of SSLv3 and additionally suggested a move to TLS 1.1 and 1.2 in order to prevent other potential avenues of attack. What is SSLv3 and why…

+ Read More

November Security Roundup

November has been a very “interesting” month as far as security as concerned. With this past patch Tuesday, a number of serious, high-impact vulnerabilities in Microsoft Windows were released, and this week another out-of-band patch was revealed. In the last year there have been serious Linux vulnerabilities (Heartbleed, Shellshock, etc), and now it seems that…

+ Read More

The Shellshock Exploit

Yesterday afternoon, an exploit called Shellshock came to light on a security message board .  CVE-2014-6271, as it is called by National Vulnerability Database, allows a remote user to execute arbitrary or malicious commands on a remote server, such as those that host websites; it has been given the highest impact rating, 10, for this reason…

+ Read More

Dropbox: phishing from the cloud

For the last few months, a number of phishing campaigns have been utilizing the free file-sharing platform, Dropbox, to distribute malware to hundreds of thousands of PCs.  Disguising itself as a fax notification or voice message, the email contains a link to a publicly-accessible Dropbox location containing an infected executable file.  The actual payload of these…

+ Read More

Heartbleed and You

Early in the morning of April 8th, ESP’s security team discovered news of a new vulnerability in a specific version of OpenSSL, which is used to provide encryption for websites using SSL/TLS encryption (HTTPS).  This new, serious vulnerability affects a large portion of the internet, and may be exploitable on some sites for months to…

+ Read More