SPECIAL COMMUNICATION AND INFORMATION SECURITY STATE SERVICE

COMPUTER EMERGENCY
RESPONSE CENTER

Report Incident

News

Ruby on Rails SQL Injection Flaw a Non-Issue for Most Organizations
5 Jan 2013

Ruby on Rails SQL Injection Flaw a Non-Issue for Most Organizations

On Wednesday, an SQL Injection vulnerability was disclosed that impacts all versions of the Ruby on Rails (a.k.a. Rails) platform. However, despite the fact that the disclosure was given a good deal ...

DDoS Toolkit Being Used in Synchronized Attacks Against Banking, Hosting and Energy Firms
5 Jan 2013

DDoS Toolkit Being Used in Synchronized Attacks Against Banking, Hosting and Energy Firms

The denial-of-service toolkit used against financial institutions late last year has also been used against hosting and energy companies.

Dorkbot likes to socialize and steals more than you can imagine
11 Oct 2012

Dorkbot likes to socialize and steals more than you can imagine

Recently there have been numerous reports about a new malware spreading through Skype. Since a couple of days, CERT Polska has also been taking an active role in disabling the Dorknet worm. A Polish ...

German Government warns citizens not to use Internet Explorer
20 Sept 2012

German Government warns citizens not to use Internet Explorer

Zero-day flaw alarm spreads. Germany’s ever-fastidious Federal Office for Information Security (BSI) has warned its citizens to steer clear of Internet Explorer until Microsoft comes up with a patch ...

iPhone 4S hack demonstrated at Mobile Pwn2Own hacking contest
20 Sept 2012

iPhone 4S hack demonstrated at Mobile Pwn2Own hacking contest

Bug in WebKit allows hackers to steal pictures and adress book data from iOS devices at EUSecWest security conference in Amsterdam. Dutch security researchers hacked an iPhone 4S today, showing how a ...

9 million PCs infected with ZeroAccess botnet
20 Sept 2012

9 million PCs infected with ZeroAccess botnet

In recent months, we've seen the rootkit family Win32/Sirefef and Win64/Sirefef (also known as ZeroAccess Botnet) update its command and control protocol and grow to infect more computers while ...

Essential Online DNS Tools
30 Aug 2012

Essential Online DNS Tools

We’ve covered a couple of DNS tools in the past, such as the DNS propagation checker, which are useful for anyone that owns a domain. The problem is that you generally have to jump around to a bunch ...

Azerbaijan Government CERT accredited by TRUSTED Introducer
24 Aug 2012

Azerbaijan Government CERT accredited by TRUSTED Introducer

Government CERT of Azerbaijan - CERT.GOV.AZ accredited by TRUSTED Introducer The European CSIRT Directory.

DDoS attacks on the rise in Latin America
17 Aug 2012

DDoS attacks on the rise in Latin America

MONTEVIDEO, Uruguay – After the Megaupload.com file-sharing website was closed last January on charges of copyright infringement, a group of hackers known as “Anonymous” launched cyber attacks, ...

RIM rebuffs claims BlackBerry encryption keys given to Indian government
6 Aug 2012

RIM rebuffs claims BlackBerry encryption keys given to Indian government

BlackBerry parent company Research in Motion (RIM) is refuting India's claims that the company has provided the Indian government with encryption keys that allows it to access communications between ...

HTML5 Top 10 Security Threats, Stealth Attacks and Silent Exploits
31 July 2012

HTML5 Top 10 Security Threats, Stealth Attacks and Silent Exploits

HTML5, the new Web standard that will make it easier to develop websites and applications that run on various screen sizes, is also vulnerable to stealth attacks and silent exploits, a security ...

120,000 zombie PCs free as botnet shut down
21 July 2012

120,000 zombie PCs free as botnet shut down

A huge global 'botnet' responsible for sending out millions of spam messages each day has been shut down by a collaborative effort from security experts in the US, Britain and Russia, researchers ...