Category Archives: security vulnerability

Kassa: Het raadsel van de digitale inbraak bij Ticketmaster

Posted on 22-02-2020 by Sijmen Ruwhof

Ticketmaster heeft alle wachtwoorden van klanten gereset, maar wil niet ingaan op wat er precies aan de hand is. Kassa nam daarom contact op met IT-deskundige Danny Mekić en mij en vroeg ons wat er aan de hand zou kunnen … Continue reading →

Posted in cyber crime, data leakage, identity theft, kassa, password, security advice, security vulnerability, tv, website security | Comments Off

Access to 250,000+ event tickets and personal details

Posted on 20-12-2016 by Sijmen Ruwhof

In today’s episode of the insecure internet I present you the company Ticketscript. This event ticketing company provides tools and features to make selling tickets for events easier. According to their website: “[..] Ticket buyers are your biggest asset. Why … Continue reading →

Posted in data leakage, hacking, password, responsible disclosure, security vulnerability, website security | 23 Comments

Scanning an enterprise organisation for the critical Java deserialization vulnerability

Posted on 14-11-2015 by Sijmen Ruwhof

On November 6, security researchers of FoxGlove Security released five zero day exploits for WebSphere, WebLogic, JBoss, Jenkins and OpenNMS. These software products are used everywhere in enterprise organizations and with the published exploits remote malicious code can be unauthenticated executed. … Continue reading →

Posted in analysis, security vulnerability, zero day | 25 Comments

Mitigations against critical universal cross-site scripting vulnerability in fully patched Internet Explorer 10 and 11

Posted on 08-02-2015 by Sijmen Ruwhof

This week David Leo disclosed a critical universal cross-site scripting vulnerability in fully patched Microsoft Internet Explorer 10 and 11 (from now on called the UXSS leak). He notified Microsoft on October 13 last year, but Microsoft didn’t publish a … Continue reading →

Posted in browser security, cross-site scripting, security vulnerability, website security | 1 Comment

2.364 Nederlandse bedrijfswebsites met ernstige beveiligingslekken

Posted on 08-11-2014 by Sijmen Ruwhof

Toen ik in oktober 2012 op internet op zoek was naar een nieuwe auto, kwam ik een autobedrijf tegen waar ik een auto wou gaan kopen: (bovenstaande website is van een willekeurig bedrijf uit de lijst die ik later beschrijf) … Continue reading →

Posted in responsible disclosure, search engine optimization, security vulnerability, website security | 15 Comments

NU.nl gehackt: Malware-analyse

Posted on 14-03-2012 by Sijmen Ruwhof

NU.nl is gehackt, zo schrijft hun weblog vandaag, waarbij mogelijk 100.000 computers zijn besmet met kwaadaardige code. Ik was benieuwd naar wat voor kwaadaardige code werd geïnjecteerd en heb deze dan ook geanalyseerd. Laat je testen of je geïnfecteerd bent Naar … Continue reading →

Posted in analysis, drive-by, security vulnerability, website | 66 Comments

Category Archives: security vulnerability

Kassa: Het raadsel van de digitale inbraak bij Ticketmaster

Access to 250,000+ event tickets and personal details

Scanning an enterprise organisation for the critical Java deserialization vulnerability

Mitigations against critical universal cross-site scripting vulnerability in fully patched Internet Explorer 10 and 11

2.364 Nederlandse bedrijfswebsites met ernstige beveiligingslekken

NU.nl gehackt: Malware-analyse

My social media profiles:

Latest posts:

Categories:

Main menu: