Alert type phishing SPAM, be careful!

What is it?

Since several days of posing as legitimate invoices and emails appear to come from trusted senders are sent to all Internet users, warning these email contain little - be a virus and their purpose is to infect your computer.


This e-mail arrives through some spam filters and contains a virus as an attachment.

Plesk Panel for Windows security flaw

December 8, 2014, the Parallels security team discovered a flaw deemed critical. Parallels immediately announced the discovery of this vulnerability with a patch publicly.

Is that it allows?

A critical security in Parallels Plesk Panel for Windows vulnerability has been recently identified. This could allow users to allow access to the data of other users of the Plesk server. This vulnerability is limited to Plesk for Windows.

Since when does it exist?

The fault is present on versions of Plesk Panel 10.4.4 11.0, 11.5 and 12.0.

Microsoft Security Bulletin MS14-068 - Critical

November 18, 2014, Microsoft announced a critical security flaw in the Kerberos protocol bulletin MS14-068. The latter is referenced under code CVE-2014-6324.

Microsoft Security Bulletin MS14-066 - Critical

Update 2014-11-19 10:40 UTC + 1

November 18, Microsoft released a new version of its patch KB 2992611. If you had already patched, the patch must be re-applied. < br / > The latter is available through Windows Update.

Drupal SA-CORE-2014-005 security flaw

October 15, 2014, the Drupal security team discovered a critical security flaw, referenced under code CVE-2014-3704. On 29 October, Drupal has publicly announced the discovery of this vulnerability with a patch.

- What is it allows?

Patches debian flaw Shellshock

IKoula teams made debian packages available to the community for versions that are no longer supported, namely:

  • Debian 3.1 32 bit
  • Debian 4 32 bit
  • Debian 4 64 bit
  • Debian 5 32 bit
  • Debian 5 64 bit

These packages include fixes for vulnerabilities:

  • CVE-2014-6271-> Shellshock v1, the first version of the exploit of the flaw
  • CVE-2014-7169-> Shellshock v2, the second
  • CVE-2014-6277 & CVE-2014-6278-> other two flaws put forward during the ShellShock fault resolution.

Major fault of the bash shell

Update 2014-09-26 12:30 UTC + 1

The CVE-2014-7169 fault seems to be patched by most of the package maintainers. We invite you to redo an update of your bash.

Security Apache 2.2 & 2.4

July 14, 2014, several security flaws have been published about the servers using Apache2. This flaw has been published in a DSA (Debian Security Advisory).

- What is it allows?

WordPress - a plugin MailPoet security flaw operating

Early July a security flaw has been discovered in the WordPress plugin MailPoet, otherwise known as the wysija-newsletters. As of July 23, 2014, the blog Sucuri informed that this flaw was exploited and publicly unveiled.

Heartbleed, one of the largest discovered security flaw

April 7, 2014, a security vulnerability was published about the servers using OpenSSL. This flaw was discovered by and a computer scientist of Google. Some scholars recognize as being the most important flaw discovered since SQL injection.

you will find the details of the vulnerability at the following address: