Microsoft Word File Spreads Malware Targeting Both Mac OS X and Windows (Part II)

In the blog we posted on March 22, FortiGuard Labs introduced a new Word Macro malware sample that targets both Apple Mac OS X and Microsoft Windows. After deeper investigation of this malware sample, we can confirm that after a successful infection the post-exploitation agent Meterpreter is run on the Continue Reading

GitLab 9.0.2 Released

Today we are releasing version 9.0.2 for GitLab Community Edition (CE) and Enterprise Edition (EE). This version contains two important security fixes for the recently introduced nested groups feature of GitLab 9.0. We recommend that all GitLab installations running version 9.0 be upgraded as soon as possible. These security vulnerabilities Continue Reading

Updates to the Google Safe Browsing’s Site Status Tool

(Cross-posted from the Google Security Blog) Google Safe Browsing gives users tools to help protect themselves from web-based threats like malware, unwanted software, and social engineering. We are best known for our warnings, which users see when they attempt to navigate to dangerous sites or download dangerous files. We also Continue Reading

cPanel & WHM 64 in CURRENT Tier

cPanel, Inc. is proud to announce that cPanel & WHM version 64 has been released to the CURRENT tier, and is now available for installation. Below are a few of the new features in this version. Multiple Incremental Backups Incremental backups have been improved and now allow you to keep Continue Reading

Cybercriminals Are Building an Army of Things Creating a Tipping Point for Cybersecurity

  • in Blog Posts
  • by
  • March 30, 2017
  • Comments Off on Cybercriminals Are Building an Army of Things Creating a Tipping Point for Cybersecurity

Cybercrime is big business, and is growing at an exponential rate. British insurer Lloyd’s of London estimated the cybercrime market at $400 Billion in 2015. Today, just two years later, the World Economic Forum estimates that the total economic cost of cybercrime to currently be $3 trillion. And Cybersecurity Ventures Continue Reading

GitLab Patch Release: 9.0.1

Today we’re releasing version 9.0.1 for GitLab Community Edition (CE) and Enterprise Edition (EE). This version resolves a number of regressions and bugs in this month’s 9.0 release. Please read on for more details. CE/EE: Fix empty clones when Gitaly process is not running. (!145) CE/EE: Resolve “404 when requesting Continue Reading

The Essential 8: ASD’s strategies to mitigate cyber security incidents

The Australian Signals Directorate’s (ASD) ‘Essential 8’ strategies to mitigate cyber security incidents represent a set of cyber security best practices that, when implemented successfully, will provide your agency with a baseline cyber security posture. The Essential 8 expand upon the ‘Top 4’ mitigation strategies, part of the government’s Protective Continue Reading

Threat Perspective: Risky Business, A Look Inside the Threat Actor Studio

There’s no denying that cyber crime has become a business, and business is booming. British insurance giant Lloyd’s of London estimated the cyber crime market at $400 Billion in 2015. As a result, the World Economic Forum estimates that the total economic cost of cybercrime to currently be $3 trillion Continue Reading

Zimbra Universal UI – Public Beta

During our first COMMIT, a Zimbra tech and developer event, we presented the new Universal UI: a re-designed user interface for Zimbra Collaboration that includes modern standards and improves the user experience. Try the new Universal UI – Cloud Based You can try it today without install anything! Click the Continue Reading

Our Response to the Senate Vote on FCC Privacy Rules

Today, the U.S. Senate voted narrowly to undo certain regulations governing broadband providers, put in place during the Obama administration, that would have required Internet Service Providers (ISPs) to obtain approval from their customers before sharing information such as web-browsing histories, app usage, and aspects of their financial and health Continue Reading

iSNS Server Memory Corruption Vulnerability in Microsoft Windows Server

Summary In November 2016, as part of my FortiGuard research work, I discovered and reported on an iSNS server memory corruption vulnerability in Microsoft Windows Server. On patch Tuesday of March 2017, Microsoft released the Security Bulletin MS17-012 that contain the fix for this vulnerability and identifies it as CVE-2017-0104. Continue Reading

Microsoft Word File Spreads Malware Targeting Both Apple Mac OS X and Microsoft Windows

  • in Blog Posts
  • by
  • March 24, 2017
  • Comments Off on Microsoft Word File Spreads Malware Targeting Both Apple Mac OS X and Microsoft Windows

On March 16, FortiGuard Labs captured a new Word file that spreads malware by executing malicious VBA (Visual Basic for Applications) code. The sample targeted both Apple Mac OS X and Microsoft Windows systems. We then analyzed the sample, and in this blog we are going to explain how it Continue Reading

Fortinet Fabric-Ready Partner Spotlight: Versa Networks

Q&A with Mark Weiner, Chief Marketing Officer at Versa Networks Fortinet spoke with Fabric-Ready Partner, Versa Networks to learn what’s top of mind for its customers, the key IT challenges they are facing and how Versa Networks’ approach to integrated security is helping drive business and customer success. 1. Tell us a Continue Reading

Complete, but Never Finished – Review Apps

Continuous methods go beyond Integration, Delivery and Deployment. Releasing early and often, and keeping all team members in the loop throughout the development lifecycle, helps everyone in an organization to work more efficiently and deliver customer value consistently. Here at GitLab, we strive to make being continuous part of our Continue Reading

FortiGuard Labs Discovers Multiple Vulnerabilities in Microsoft Word

Over the last few months FortiGuard Labs discovered and reported multiple vulnerabilities found in different versions of Microsoft Word. These vulnerabilities were patched in the January (MS17-002) and March (MS17-014) security updates. These patches are rated as important, and as always, we suggest users update Microsoft Office as soon as possible. Continue Reading

cPanel TSR-2017-0002 Full Disclosure

cPanel TSR-2017-0002 Full Disclosure SEC-208 Summary Addon domain conversion did not require a package for resellers. Security Rating cPanel has assigned this vulnerability a CVSSv3 score of 2.7 CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L Description Previously, when you converted an addon domain to a normal account, it was not required that a reseller specify a Continue Reading

A Closer Look at the Rapid Evolution of EHR Security

More than any other database containing sensitive information for a large quantity of people, electronic health records (EHRs) are an especially attractive target for hackers. The patient data they hold can be used for financial gain, as recent reports show that stolen healthcare databases are being sold on the deep Continue Reading

Email’s Open Source Renaissance – It’s Time to Expect More

Email’s Open Source Renaissance – It’s Time to Expect More | Zimbra : Blog Navigation Do you think that email is fading as a communication tool? Think again! Contrary to popular opinion, email is not only still relevant—it’s growing. This whitepaper describes how email providers need to step up and Continue Reading

GitLab 8.17.4, 8.16.8, and 8.15.8 Released

Today we are releasing versions 8.17.4, 8.16.8, and 8.15.8 for GitLab Community Edition (CE) and Enterprise Edition (EE). These versions contain several security fixes, including an important security fix for a critical information disclosure vulnerability, protection against Server-Side Request Forgery (SSRF) attacks, a fix for some links vulnerable to tabnabbing, Continue Reading

cPanel TSR-2017-0002 Announcement

cPanel TSR-2017-0002 Announcement cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system. cPanel has rated these updates as having CVSSv3 scores Continue Reading

#NoHacked: A year in review

We hope your year started out safe and secure!We wanted to share with you a summary of our 2016 work as we continue our #NoHacked campaign. Let’s start with some trends on hacked sites from the past year. State of Website Security in 2016 First off, some unfortunate news. We’ve Continue Reading

Joomla’s Homepage Gets A Fresh Look

We are pleased to announce the launch of the brand new design of the homepage! And it’s not only about a new design, the content has been refreshed to make it easy to discover the Joomla! World and more easily find the information you may need. A big thank Continue Reading

Top 10 Features to boost sales and run your e-commerce business more efficiently

In an ever growing and competitive online market, you are always looking for the right tools and features to help you sprint ahead. That’s why we offer innovative built-in features to boost your sales and run your e-commerce business more efficiently. Run all types of products Key features: type of Continue Reading

MailEnable Version 9.7 Release

RSS: MailEnable Version 9.7 Release Version 9.7 is now available. It includes new features like: Facebook Login for Webmail/Mobile Webmail The most significant feature is the integrated Facebook login. For an overview please refer to the following documentation: Once configured, users will be able to login access their mail Continue Reading

Grabbot is Back to Nab Your Data

Introduction Fortinet has discovered a new botnet capable of stealing large amounts of user information, as well as remotely manipulating compromised machines. The malware appears to be based on an older botnet known as Grabbot, which was first discovered back in November of 2014. This new variant improves on that existing Continue Reading

Blockchain and Financial System Impact

Blockchain is a technology that basically distributes a ledger. For those of you in the financial management world, you know a ledger as the trusted source of transactions or facts. The same is true with blockchain. But instead of existing in a large leather bound tome or in a financial Continue Reading

Demo – Mastering Code Review With GitLab

Watch Discussion Lead Sean McGivern demonstrate our typical code review process. Whatever your team’s workflow, we expect you face immense pressure to quickly ship new features. In our 2016 Developer Survey, 81 percent of developers admit to releasing code before it’s ready, citing the pressure of tight or unrealistic deadlines Continue Reading

How is team-member-1 doing?

The engineer that gave the unfortunate command to delete our primary database was not only on our minds but also of other people. He’s known by the community as “team-member-1”, as we refered to him by this expression in our public communications during the incident. After we posted the postmortem Continue Reading

GitLab Critical Security Update Pre-Announcement

On Monday, March 20th, 2017 at 23:59 UTC, we will publish a critical GitLab security update. More details will be forthcoming on our blog, including which versions of GitLab are affected. We recommend installations running affected versions to upgrade immediately. Please forward this alert to the appropriate people at your Continue Reading

Successfully Migrate Your E-Commerce Site

Migrating to PrestaShop generally happens when redesigning an e-commerce site. The aim is to optimize the site’s performance to increase sales. It is a tricky operation that should be handled methodically to avoid errors and pitfalls. Our method relies on three key points: 1/ Preparing the Migration Any migration to Continue Reading

Zimbra Collaboration 8.7.5 is now Available

We have only one week left to our biggest event around our Community and Developers: COMMIT in NYC. While we expect all of you next week, we are busy with our new two-week cycle for Maintenance Releases. The new Maintenance Release cycle will help us accelerate the resolution of bugs Continue Reading

Teardown of Android/Ztorg (Part 2)

In the part 1 of this blog, we saw that Android/Ztorg.AM!tr silently downloads a remote encrypted APK, then installs it and launches a method named c() in the n.a.c.q class. In this blog post, we’ll investigate what this does. This is the method c() of n.a.c.q: This prints “world,” then waits for 200 Continue Reading

Gitter is joining the GitLab Team

Today we have some exciting news to announce: Gitter has been acquired by GitLab! Since its launch in 2014, Gitter has fast become the place to connect the open source and software development community. Over 800,000 developers have signed up to Gitter, where they can join any of the thousands Continue Reading

Fortinet Welcomes New Industry-Leading Technology Partners to Our Security Fabric Ecosystem

  • in Blog Posts
  • by
  • March 16, 2017
  • Comments Off on Fortinet Welcomes New Industry-Leading Technology Partners to Our Security Fabric Ecosystem

Neil Prasad shares more details about our most recent Fortinet Fabric Ready Partner Program news in a brief blog Q&A. What did you announce today? Today we announced the addition of eight industry-leading information technology providers to our Fortinet Fabric-Ready Partner Program. These new partners further extend the Fortinet Security Fabric across Continue Reading

Zimbra Desktop, the best ally of a Zimbra experience in your workstation

Zimbra Desktop is a free and open source email client application that gives you online and offline access to all your email accounts in one place. It’s the best ally offering the best Zimbra experience in your workstation without any additional cost, and available for Windows, Mac and Linux. Principal advantages Continue Reading

GitLab & Buffer CEOs Talk Transparency at Scale

Joel Gascoigne, CEO of Buffer, a social media management tool, recently met GitLab CEO Sytse (Sid) Sijbrandij on a call to chat about one of their favorite topics: transparency in their respective companies. “I feel like I know you already,” seemed like a sentiment shared by both men, since each Continue Reading

Axosoft Launches GitKraken Integration With GitLab

With this new integration, GitLab users can now work more efficiently in GitKraken to manage repositories. Save time by leveraging GitKraken’s integration with GitLab to do things like generate and connect SSH keys, find available remote repositories to clone, and more—all without ever leaving GitKraken. GitKraken is a Git GUI Continue Reading

FortiGuard Labs Telemetry: Round up of 2015 and 2016 IoT Threats (Part 2 Home Routers)

In our last post Round up of 2016 IoT Threats we compared 2015 and 2016 global threat telemetry for IoT devices collected by our FortiGuard Labs. In this post, we will examine why home routers had a such a huge increase in IPS signature hits in 2016, when compared to 2015. Continue Reading

Demo – CI/CD with GitLab in action

If your developer team isn’t among the majority of developers using Continuous Integration more than 75 percent of the time, what are you waiting for? In this video demonstration, Product Manager Joshua Lambert shows just how easy it is to set up a project with GitLab CI/CD, so you can Continue Reading

Four Ways to Use Discount Coupons to Achieve Your Objectives

Using coupons in e-commerce has become a commonplace marketing strategy, but is very effective when done correctly. With one in two purchases being made with a promotional code, not using them would be a mistake. Nevertheless, how can you avoid reducing your margin and losing revenue without using promotions? In Continue Reading

Updated CentOS Vagrant Images Available (v1702.01)

We are pleased to announce new official Vagrant images of CentOS Linux 6.8 and CentOS Linux 7.3.1611 for x86_64, featuring updated packages to 28 February 2017. Known Issues The VirtualBox Guest Additions are not preinstalled; if you need them for shared folders, please install the vagrant-vbguest plugin and add the Continue Reading

GitLab Patch Release: 8.17.3

Today we’re releasing version 8.17.3 for GitLab Community Edition (CE) and Enterprise Edition (EE). This version resolves a number of regressions and bugs in the last month’s 8.17 release. Please read on for more details. CE/EE: Fix the redirect to custom home page URL. (!9518) CE/EE: Fix broken migration when Continue Reading

The Experimental ISPConfig Server – Debian Stretch (Apache, MySQL, PHP 7, Pure-FTPD and ISPConfig 3.1)

  • in Blog Posts
  • by
  • March 11, 2017
  • Comments Off on The Experimental ISPConfig Server – Debian Stretch (Apache, MySQL, PHP 7, Pure-FTPD and ISPConfig 3.1)

This tutorial shows you how to install ISPConfig from a Debian package. The setup is highly experimental and shows the way that the ISPConfig project takes to make ISPConfig installation as easy as posible with apt on Debian (and later on Ubuntu as well). Read more:

The next version of Joomla! is just around the corner

With over 700 improvements, including fantastic new features like custom fields, a multilingual association manager and an improved workflow, Joomla! 3.7 is clearly something to celebrate and it is easy to see why it has the Joomla! Community very excited. Here’s a quick look at the major new features* included Continue Reading

Kali Linux 2016.2 Release

��}k��6��g������D��~fmǞxlj����ޓ��C��D7Er�h����[����e����S���dv��q�P( �z:���`��B�w~�z�a(ztّ�/�f86{e��{6��!{�n��}dY�YOԦ���>�4��q���.g��_�7�y͆�>�{l|�~��_�+/� bބ]����f?�1����ƣ02�hd���/ڠ� ~e�v�X�5��c��l?�=�Ø�waPW3��2�QO�EPc�3��5������d�Ѐ�� @nLoN��K�{D�k�`�^���ΧF��N�2ș�K��·vvȭ.Laό�;^��V��]o�����ש3� Q(f]��_W����q Bf���s�1v��BH�H�ľ�,�B�Ʋ��JD�@Y��7m��X�q��Ŗ1��ّ����H�NN�������$�OmW��Q 53���N˘D� {� ��AϏ� “z�rX������[���}܏��-!T�p�{��[�q�?C�vaT`[t�X�G�X�L���’����P��i�[���O5X��v�����r�6’H˾>Τ4=���?���A+��>�!wg������ѤqJ�P�-ET�d�n�D�vb�m���G/�,��}����=���G�;: �1�-�/ۮx�s�����3���ZX��!�z/�ڎ�cM���W�y�q�a� ٰF�S�`�z2�$�o^”��%��MŪ~q����r:�?��$�b�V���m7]�{��7ŏ^�� l~�HM2ƈ�p @�%!(�e�#��}���-��e8 �����b�? `�nQ������Y6o֥}��f0��q8Ѿ�#v��v�D�A���^(�๡$2=���ƃ�XSi��V��X?�E�Q�]�d�n��|g����)�5����;����{[�m��80|$X)�x�zn����>��z�yN�����������*T����E��tkOgQ8z�WM��P���q����Bh���s>6�ݱ�M�����?2��yp���#c�oL��ޱP�Ʊb3:�p��`TNw�w�F��Plj�hH�UH_P[K���St�6��>���wC6������V±�jo��{���8pΩX-__����� � .����G����cX�g}�){ʃ�����?xcPj?��Av�l���:�]��)��[l������b��9�0��”/6g�S�q���>��퍷 f߲��al8�U�=@�i� �)M!��g�1Ev� ���X*�n�� �^>gǿ^(r#��s���e�� �G��P�ޘ#�xd�����Hm�#�����g�pײ’�j�2F�}�^x����gh��{ Ù�����WO��zӗ���}��)؞�A1��v�]����.���&����8qu#��’���.�6�����|�MXEQ��t9n��������X�ӽ�e����M�m�|�U��Y��m?���|3�9IK�;w;w�������5aEx’���:Hc�cđ���s7���� ��j�ԁ>�v’�`&�;�F۝o�o:;��*mw�6 �’��N�̸%{gG�-����{�2������OHg����s�D�FNe�unq�A��ck�oo�Y�MN�3�..�]d,�B �a �w���[$�L�B�N��Eک�;�Y:�ت�� ����H�dO� I;�A2jn�E�K�N�fO4�P��(�Y�օJ*��fr�٬��Y��}�z���I��$mw�yC�p;]��mP���4��dEcϺ=,”l>���au��”1�� ���9�#��/�S�wv�ţ�j��� ����ʹq�{�9�’�H|}�v��.K��;v�#�@t�rRK�*��S6m_���oc]���C”�R��I���Ty���� ���3�� �4��fZ|xl�!0�� �Q���ק��ں�*:�Ev��M)�M��9W*����”���(��{ �O�p���B�ȯZY�7�l!�L�ͪ�9#T�|�}���c�j�kJ6�i�=�i�3Dfr�’}xu7� ��Նu��N�5����7ܬ�� �7��{[19K��LV��h P�y���slT�2t��?��]ܢT�M��f �i�� �”V�:V������.���f�Dmӂ�yU�’N��-J 0[” &ڞ�ԛ��’�������#o�7€Æ�a�!W$1z��8�!a&xhфK��g#2�A&��ܳ�,^���`I��WYMs�0�����0!w���-�s��y�G�e��| Tey�����& �RxK��#EE��W�u�l�@����G��,�S��)Y�pV���:�?��’�5jmX�5r����&.��3B��ƼP;�zv��m�(��W���=.��ص����[����ΰ�x�k�4ߕ���)�;�~؇� �d�!U�v��Bm����UB�dI$H��rٝЙ�z����]�[S�8����r_��i��ZU�4�I���S���V�OWn���:������s�2jC���~�ɔ��w�YC�T4[pG����z�$�A]����.g���k2� �p[�#�ҋ�Q�=P���^��$�!R v�;@�T^���!w�_�(B��xӠ5��2�,�2��:1gܼ��t�1w t��?�_�yj:���ʞ(���8�,�(��w3��’��U��e;�����}Z�י�=W�T�����LGE�b}d��”2�!�2 Continue Reading

Kali Linux, Rolling Edition Released – 2016.1

��}��6��o�yD�t�D�.}�vw>۱g�M{mg�{r�:�ItS����{��ニ�l� ^E���N&��H�P�;��}������ ��������x᱉ǣ��a�g�[?���W��{��BĜM��,����g�`/��U�����Uĸ���2c��l�z”�_|x? B�Dl��s���a�e2�� ��A~x���� U�š;N�m[���d��Ӓ�”p`�c@J��.��r%nVA�D�(T=U@]!��΄��N��a�PL/:�8^Fg��j����v�z�XE=|�� �h…��I�(��’�ol��D(����ͅ�w��� �d���h؉ȚD�Sr�u�^(�#f.�����P�DX= ؆�o����ه;R�� ��Q�`��b�Q�`�l]7]F%do�.��1��c��$������x�?�l ���3�aĹ��ʍ-�?”.}��Է���d �[��kJ� D���:}6WY��i�����qJ��B��T�d�ƒH�fʁq�����/��_�?)��������ezr%c��aɸ�|�sz`���3���íz�������Nd��囏:X�”D=ȅ5R��*���h~P0��a�-��Hmf��7����z�-@m�’��^`�W��({����>�e}��ѫ�:H���m��A��fCa�8��B��6����NzKB�{������9L>�&� �P�E��@��t�$�h �ҽ��f0�{�hj}+����6 �tW-�U�Ҏ�D��ğ�m�]K�?GL�q��|]�’�i�� ;�GЬ;����u^5�C�u�� ��B�5^�1�O��ܚ��u�?�X��щ5���!���S�6,��K�b ����a9�� Aa�P ��5�6@�W���f�:��t�����w��2’�-{���F�� �{9_~U������Н��V՘�Y6�А���z6��]2M ;�w�v������ ��`�~��r��6x��H�Q#:3G��Y”���4�-K�5�c��C��_���ŌG�ek٦ �1ַ���T’��f`rAh�~B�9�҈�@����KB��E���������1:Tr$T.�m�{�S����E�N��u���3{��[`D�!�a�a|gϞ�z���’0}���~co���NA G ��>v�]��t�>���&��� �}��c��>H~Z*g��脽c��d?�;�rK�*ۓ�S6m_��廿�e �)�d���/u$���oG7��p�(�`D��nX�4�x{4- �3��ic/����P�G5�ۮ.��ԬJ8�r��H�H�S����軦؛�6Y�o�D[q��ÿ��!�{�͵�X�K�F{�>��y(0�/�I�}��� ��)Y�E�EU�&a!N���kGw�+֯+vdԡT ��#Sώ���ɲ�Ƃ� �i@��N�=��>�$Q,4�K��RgPqbi��]3,��_��[dX�i�”�5�*��D��������5@�s��Ү�EE8����=K>���5���Ey.�q0-_;X�x� R��M�f�A�W�v��X�po��o� �fH9{0���� �*�’����0��&u�?’Ï������6+ߪ9YIuQ֥f�!)E�0���i��/%�I�����/��=C.R���� ���?_t���:�B9i�j������u���@��ǧ’��.�S��)!Y�p6�|]g��N˓ߺkmH�u�T������@�[OYooM��’�J�V �:��d�:w��[��|��_�U���﬷���ځ7�w%h�gJ��^��6��v2��GS�ݫ�P�NUi� ���$ �MS���h�a=K��T�&�g!z�a4B��?-�m5��0DTX���Cwm-E�׃rx�Ʀ�>88>8mO��� >FK��Svzp UN���$�����}��-[�Ѩ�åﭹ1���G��Hy%Df$�M�#`d.��l���JO�W`�c�%K�’/�>eo�����ǩ&0�DA��Z�h�2�2᱘�TsLN����D��_�jț�6lt�A��� v3�>’�7JחQ;�l��!�%q�낶�+b�q’��МZ��x�E�3�’�{+��*���Q,{E”1+�(��*�Isߴt��gC��X��T9J��3��! ��(]WY�M��[M���RqZ��DE#~ T��i��H�Y��?ʡm0K�7����a�-���yU�K2F+�[�1�:��ys���ԘJ|���O^���J[� ֠�5�^c6������2Ҿ�dl�4��3M p�q`~Z9+�$>Yj��z�,/H”ujEe�A=�a=���H�8t�f����6�����4�S�`C9.�K��M�30��”��NՕk@�E0�’����� �Gv��l&�*��G����!uY�%���:���P��]=��a3_�&���n3/[�V+ Q��*�3f���/L��z��֣�)��L��Z�L�Nn�R*ֲ�I���6���X�%S7��]5M���T��|A^���,��{rj0vWK�DD�b)����&k�A����O��=�!�P�f��(���ȋX,Q�Y���Ū?$���u���ѡ~��t�0S� �[,C�O>:��7 Continue Reading

[SingCERT] Apache Struts2 Possible Remote Code Execution

Background On 7th March 2017, Apache Software Foundation issued an emergency security alert for CVE-2017-5638 (Apache Struts2 S2-045). Apache Struts is an open source project of the Apache Foundation Jakarta project team which adopts a MVC framework for developers to develop Java web applications. Apache Struts is exposed to a Continue Reading

Webuzo System Application Updated

We have updated phpMyAdmin to 4.6.6 in MySQL 5.5, MySQL 5.6, MariaDB 5.5, MariaDB 10, MariaDB 10.1 and Percona 5.5 packages. The blowfish secret length is also increased to 32 in this latest update. phpMyAdmin is a free software tool written in PHP, intended to handle the administration of MySQL Continue Reading

Webuzo System Application Updated : PHP 7.1 (7.1.2)

Click install PHP 7.1 from the Webuzo Library. PHP 7.1 is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML Review , Rate and View Demo of PHP 7.1 here:

Webuzo System Application Updated : PHP 7.0 (7.0.16)

Click install PHP 7.0 from the Webuzo Library. PHP 7.0 is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML Review , Rate and View Demo of PHP 7.0 here:

Cloudflare at Google NEXT 2017

The Cloudflare team is headed to Google NEXT 2017 from March 8th – 10th at Moscone Center in San Francisco, CA. We’re excited to meet with customers, partners, and new friends. Come learn about Cloudflare’s recent partnership with Google Cloud Platform (CGP) through their CDN Interconnect Program. Cloudflare offers performance Continue Reading

[infra] scheduled major outage for several services

[infra] scheduled major outage for several services Wednesday , 8, March 2017 Fabian Arrotin Uncategorized As announced, and confirmed on the centos-devel list, next week we’ll have a major outage impacting several services that are hosted in the same DC : due to some reorganization at the DC/Cage level, we’ll Continue Reading

FortiGuard Labs Telemetry – Roundup and Comparison of 2015 and 2016 IoT Threats

Attacks targeting and originating from IoT devices began grabbing news headlines toward the last quarter of 2016. Insecure IoT devices became the low-hanging fruit for threat actors to easily exploit. Some were even notoriously used as botnets to launch DDoS attacks against selected targets. For example, the infamous Mirai botnet Continue Reading

WordPress 4.7.3 Security and Maintenance Release

WordPress 4.7.3 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.7.2 and earlier are affected by six security issues: Cross-site scripting (XSS) via media file metadata.  Reported by Chris Andrè Dale, Yorick Koster, and Simon P. Briggs. Continue Reading

3 Tips for Introducing Continuous Workflows to Your Development Process

We know that developers see Continuous Integration as an integral part of their workflow, but working in a continuous manner goes beyond just the technical. Here are some ways your teams can be more continuous throughout the development lifecycle. Adopt DevOps Releases get delayed and broken code gets shipped when Continue Reading

How Do I Generate A Complete Memory Dump If I Am Asked By Support

Generating a complete memory dump – On occasion, the Parallels Support team may determine a memory dump is necessary when troubleshooting. Follow the steps below to create a complete memory dump: Open the Run utility. Enter the text sysdm.cpl. A window will pop up. Select the Advanced tab, then click on Continue Reading

Python 3.6.1rc1 is now available for testing

Python 3.6.1rc1 is now available.   Python 3.6.1rc1 is the release candidate for the first maintenance release of Python 3.6, which was initially released in 2016-12 to great interest.   Three months later, we are providing the first set of bugfixes and documentation updates to 3.6.  See the What’s New In Continue Reading

Byline: Is Your Healthcare Data Safe? Three Questions to Ask

In the all-out war for data, the healthcare industry is getting hit the hardest. Experian’s fourth annual 2017 Data Breach Industry Forecast states that healthcare organizations will be the most targeted sector for attack, with new and sophisticated attacks emerging. If healthcare organizations and their IT teams aim to keep data safe, Continue Reading

Why More Companies Are Adopting Open Source Technology

98 percent of developers use open source tools – even when they’re not supposed to! Here’s why. Our Global Developer Report explores how developers’ methods are changing, and how businesses can adapt to get the best out of their development teams. More than half of our respondents identified as developer Continue Reading

Byline: Securing Your Growing Home Network

The average home in North America now has 13 connected devices. And that number is expected to increase exponentially. Smart TVs, connected appliances, online fitness devices, entertainment and gaming systems, smart cars, connected water and power meters, climate control systems and online home security systems are all available. Many home Continue Reading

Dot Ransomware: Yet another Commission-based Ransomware-as-a-Service

Dot ransomware is a new Ransomware-as-a-service (RaaS) that is openly available in hacking forums. And following the current trend in malware services, it uses web portals hosted in the TOR network for anonymity. Commission-based Profit While lurking in hacking forums, we came across a post for this new ransomware service. RaaS Continue Reading

Now Available! Windows Server Premium Assurance – Six more years of support

This post was authored by the Windows Server Team. Today we are announcing the general availability of Windows Server Premium Assurance with which you can add the flexibility to keep systems running without disruption as you modernize. When you purchase Premium Assurance, you receive “critical” and “important” security updates and Continue Reading

Managed Security Service Providers, Choosing the Right Security Vendor

Businesses struggling to secure their networks against determined cyber attackers are facing a perfect storm of challenges: most networks are in the midst of a dramatic transformation, including IoT, virtualization, and the cloud, the number and sophistication of network attacks is increasing, the cost of being breached continues to rise, Continue Reading

Quantifying the Impact of “Cloudbleed”

Last Thursday we released details on a bug in Cloudflare’s parser impacting our customers. It was an extremely serious bug that caused data flowing through Cloudflare’s network to be leaked onto the Internet. We fully patched the bug within hours of being notified. However, given the scale of Cloudflare, the Continue Reading

GitLab 8.17.2 released

Today we’re releasing version 8.17.2 for GitLab Community Edition (CE) and Enterprise Edition (EE). This version resolves a bug in our previous patch where an invalid asset may have been cached in the web browser, causing errors in the user interface. Please read on for more details. The 8.17.1+ce.0 and Continue Reading

GitLab 8.17.1 released

Today we’re releasing version 8.17.1 for GitLab Community Edition (CE) and Enterprise Edition (EE). This version resolves a number of regressions and bugs in the recent 8.17 release. If you’re wondering what happened to the packages 8.17.1+(ce|ee).0 and 8.17.1+(ce|ee).1, good eye! The first version was accidentally packaged with some Javascript Continue Reading

Five Areas for Cybersecurity Innovation in 2017

The world never stands still. In the technology space, this means that constant innovation and discovery is the key to a solution provider’s survival and growth. In the cybersecurity arena, this creed is even more vital. Many hackers are brilliant people. There’s only one way to get the better of Continue Reading

You don't need to break my heart…

X-ray image of installed pacemaker showing wire routing – Image from Wikipedia Recently, journalists reported a man had been charged with arson using data retrieved from his own pacemaker (see here). One article showed a “funny” image of a man’s chest with stitches to insert or access the pacemaker. This, Continue Reading

WhatsApp chat WhatsApp us