LinuxSecurity.com

Syndikovat obsah
The central voice for Linux and Open Source security news.
Aktualizace: 8 min 59 sek zpět

Lottery-hacking sysadmin's unlucky number comes up: 25 years in the slammer

23 Srpen, 2017 - 12:23
LinuxSecurity.com: The lottery sysadmin who fooled around with random numbers has a new variable to consider: how much up to 25 years he'll have to serve of his latest sentence.
Kategorie: Hacking & Security

How to protect your network from ransomware attacks

23 Srpen, 2017 - 12:19
LinuxSecurity.com: Ransomware attacks are becoming more rampant now that criminals have learned they are an effective way to make money in a short amount of time. Attackers do not even need any programming skills to launch an attack because they can obtain code that is shared among the many hacker communities.
Kategorie: Hacking & Security

Dino Dai Zovi Dives Into Container Security, SecDevOps

23 Srpen, 2017 - 12:16
LinuxSecurity.com: Dino Dai Zovi visits the Dark Reading News Desk to discuss the under-explored security aspects of containers and data center orchestration tools (like Docker, Kubernetes, and Mesos) and weighs in on whether the time has come for SecDevOps.
Kategorie: Hacking & Security

Watch Hackers Hijack Three Robots for Spying and Sabotage

22 Srpen, 2017 - 12:34
LinuxSecurity.com: The entire corpus of science fiction has trained humanity to fear the day when helpful household and industrial robots turn against it, in a Skynet-style uprising. But a much more near-term threat lurks in the age of automation: not that anthropomorphic gadgets will develop minds of their own, but that a very human hacker will take control of them.
Kategorie: Hacking & Security

Enigma ethereum marketplace hijacked, investors duped by phishing scam

22 Srpen, 2017 - 12:32
LinuxSecurity.com: Enigma, a cryptocurrency investor platform, was compromised by an attacker who swindled investors into parting with roughly $500,000 in cryptocurrency.
Kategorie: Hacking & Security

Getting A Girlfriend : The Hacker's Way - Part 2

22 Srpen, 2017 - 12:27
LinuxSecurity.com: Welcome back! In the previous part, I wrote about how I found her and stalked her like a creep. Now lets talk about what happened after that. So I sent her a phishing link which had a page like this:
Kategorie: Hacking & Security

Fail2Ban 0.10 finally released

21 Srpen, 2017 - 13:25
LinuxSecurity.com: Thanks to Daniel Aleksandersen for sending this in. IPv6 support, faster more then ever, more secure, many new features etc. See the ChangeLog for more information.
Kategorie: Hacking & Security

Bitcoin-accepting sites leave cookie trail that crumbles anonymity

21 Srpen, 2017 - 10:44
LinuxSecurity.com: Bitcoin transactions might be anonymous, but on the Internet, its users aren't - and according to research out of Princeton University, linking the two together is trivial on the modern, much-tracked Internet.
Kategorie: Hacking & Security

Verizon-Yes, Verizon-Just Stood Up For Your Privacy

21 Srpen, 2017 - 10:40
LinuxSecurity.com: Fourteen of the biggest US tech companies filed a brief with the Supreme Court on Monday supporting more rigorous warrant requirements for law enforcement seeking certain cell phone data, such as location information. In the statement, the signatories-Google, Apple, Facebook, and Microsoft among them-argue that the government leans on outdated laws from the 1970s to justify Fourth Amendment overreach.
Kategorie: Hacking & Security

China Will Launch World's First 'Unhackable' Computer Network

21 Srpen, 2017 - 10:37
LinuxSecurity.com: China is set to launch the world's first unhackable computer network this August. Called the Jinan project, the computer network is based on quantum technology.
Kategorie: Hacking & Security

Blowing the Whistle on Bad Attribution

18 Srpen, 2017 - 13:15
LinuxSecurity.com: The New York Times this week published a fascinating story about a young programmer in Ukraine who'd turned himself in to the local police. The Times says the man did so after one of his software tools was identified by the U.S. government as part of the arsenal used by Russian hackers suspected of hacking into the Democratic National Committee (DNC) last year. It's a good read, as long as you can ignore that the premise of the piece is completely wrong.
Kategorie: Hacking & Security

Skilled bad actors use new pulse wave DDoS attacks to hit multiple targets

17 Srpen, 2017 - 11:52
LinuxSecurity.com: In a new report, Incapsula warns about a new type of ferocious DDoS attack that uses "pulse waves" to hit multiple targets. Pulse wave DDoS is a new attack tactic designed by skilled bad actors "to double the botnet's output and exploit soft spots in 'appliance first cloud second' hybrid mitigation solutions."
Kategorie: Hacking & Security

A Deep Flaw in Your Car Lets Hackers Shut Down Safety Features

17 Srpen, 2017 - 10:05
LinuxSecurity.com: Since two security researchers showed they could hijack a moving Jeep on a highway three years ago, both automakers and the cybersecurity industry have accepted that connected cars are as vulnerable to hacking as anything else linked to the internet.
Kategorie: Hacking & Security

Take Part in a Study to Help Improve Onion Services

16 Srpen, 2017 - 16:06
LinuxSecurity.com: I am a postdoc at Princeton University studying computer security and human-computer interaction. My colleagues and I want to understand how Tor users interact with onion services (formerly known as hidden services). The goal of our study is to understand your expectations, assumptions, and habits when browsing onion services. For example, we are wondering: How do you keep track of onion domains?
Kategorie: Hacking & Security

Google awards student $10k for discovery of App Engine data leak flaw

16 Srpen, 2017 - 16:04
LinuxSecurity.com: Google has awarded $10,000 to a high school student for the discovery of a bug in Google's App Engine server which could lead to information disclosure.
Kategorie: Hacking & Security

Top 10 Enterprise Encryption Products

16 Srpen, 2017 - 15:59
LinuxSecurity.com: A decade ago, encryption was hot enterprise security news. As a measure of its effectiveness as a technology, it has been incorporated as a key feature in many security suites since. But that doesn't mean it has faded in importance. With so many incidents of ransomware, fraud and data breaches in the news, encrypting sensitive data remains a vital necessity.
Kategorie: Hacking & Security

Schoolboy bags $10,000 reward from Google with easy HTTP Host bypass

14 Srpen, 2017 - 15:13
LinuxSecurity.com: A teenager in Uruguay has scored big after finding and reporting a bug in Google's App Engine to view confidential internal Google documents.
Kategorie: Hacking & Security

Those Free Stingray-Detector Apps? Yeah, Spies Could Outsmart Them

14 Srpen, 2017 - 15:12
LinuxSecurity.com: As smartphone users have become more aware that fake cell phone towers, known as IMSI catchers or stingrays, can spy on them, developers have rushed to offer apps that detect when your phone connects to one. Unfortunately, it seems, those tools aren't as effective as they claim. Watching the watchers turns out to be a complicated business.
Kategorie: Hacking & Security

Git, SVN and Mercurial Open-Source Version Control Systems Update for Critical Security Vulnerabilit

11 Srpen, 2017 - 12:43
LinuxSecurity.com: Developers around the world take note - you must update your version control systems now, or face the possibility of being exploited due to a known flaw.
Kategorie: Hacking & Security

The DDoS Threat: Ukraine's Postal Service Hit by Two-Day Attack

11 Srpen, 2017 - 12:42
LinuxSecurity.com: The website for Ukraine's national postal service Ukrposhta was recently taken down by DDoS attacks for two days in a row, Interfax reports.
Kategorie: Hacking & Security