1. October 2013 19:40 by CA
An Israeli researcher has found a way to access a locked iPhone's contacts and messages database using Siri.
In a YouTube video, Dany Lisiansky showed how a locked phone running iOS 7.0.2 can be opened by using Siri's voice control to make a call to an attacker's system. This "feature" then allows an attacker to access the target handset's Phone application, giving access to call history, voicemail, and entire list of contacts by following seven steps:
2. July 2013 11:23 by CA
in Hack, IT Security
Barracuda SSL VPN 680Vx version 220.127.116.11 suffers from multiple stored cross site scripting vulnerabilities when parsing user input to several parameters via POST method. Attackers can exploit these weaknesses to execute arbitrary HTML and script code in a user's browser session
Cisco has released patches for its networking appliance users and customers in order to address a number of security flaws that could allow hackers to remotely execute commands or disrupt critical processes.
The vulnerabilities affected the underlying Cisco IronPort AsyncOS software for a number of the company's different appliances, including Cisco's Web Security Appliance, Email Security Appliance, and its Content Security Management Appliance.