CentOS Update for bpftool CESA-2018:3651 centos7

The remote host is missing an update for the 'bpftool' package(s) announced via the CESA-2018:3651 advisory. [...] ... Read More

MyFitnessPal Data Breach

| | Hack, MyFitnessPal
n February 2018, the diet and exercise service MyFitnessPal suffered a data breach. The incident exposed 144 million unique email addresses alongside usernames, IP addresses and passwords stored as SHA-1 and bcrypt hashes (the former for earlier accounts, the latter for newer accounts). [...] ... Read More

First it was Marriott, now Quora has been Hacked…

| | Hack, Quora Hacked
100 million Quora users may have had their data accessed by an unauthorized third party. Quora is actively investigating the incident, and has already taken steps to improve its security. [...] ... Read More
Marriott Data Breach and What You Need to Know

Marriott Data Breach and What You Need to Know

Marriott International said its Starwood guest reservation database was breached, exposing the personal info of about 500 million customers. [...] ... Read More

The SecurityOrb Show – An Interview with Dr. Elizabeth Milovidov, Esq. founder of DigitalParentingCoach.com. – 11/27/2018

I had the opportunity to speak with Dr. Elizabeth Milovidov, Esq. founder of DigitalParentingCoach.com about Internet Safety. Listen to what Dr. Milovidov has to say here: [...] ... Read More

CVE-2018-15454 (Cisco SIP) Exploit Information

From October 2018, NCCIC analysts have observed network traffic indicating attempts, by unknown actors against multiple government agencies, to exploit a vulnerability [CVE-2018-15454] in the Session Initiation Protocol (SIP) inspection engine of Cisco ASA Software and Cisco FTD Software. [...] ... Read More

Amazon AWS GuardDuty

Amazon GuardDuty is a continuous security monitoring service that analyzes and processes the following data sources: VPC Flow Logs, AWS CloudTrail event logs, and DNS logs. [...] ... Read More

Amazon AWS Inspector

Amazon Inspector is an automated security assessment service that helps you test the network accessibility of your Amazon EC2 instances and the security state of your applications running on those instances. [...] ... Read More
Docker Part 1: Getting Started in Docker for the sysadmin who doesnt know what the hell that is

Using Docker To Install OpenVAS On CentOS

An interesting post from Gerry Williams at gerrywilliams.net Description: Saw a post on r/sysadmin the other day with a walkthrough on using Docker for the first time. Thought I would take some notes: To Resolve: [...] ... Read More

OpenVAS image for Docker on Ubuntu

| | Cloud Security, Docker, OpenVAS
A Docker container for OpenVAS on Ubuntu. By default, the latest images includes the OpenVAS Base as well as the NVTs and Certs required to run OpenVAS [...] ... Read More