LinuxSecurity.com

Syndikovat obsah
The central voice for Linux and Open Source security news.
Aktualizace: 3 min 40 sek zpět

Watch: How to Pick a Lock

11 Prosinec, 2017 - 12:02
LinuxSecurity.com: You can't keep your data secure software alone. A good hacker knows a complex set of skills that includes computers, social engineering, and physical security. That means a hacker that really wants your stuff will know how to pick a lock to get it.
Kategorie: Hacking & Security

Dyn Inc. DDoS anniversary, and the truth about the Reaper botnet

11 Prosinec, 2017 - 11:58
LinuxSecurity.com: For this week's episode of Salted Hash, we're joined by Josh Shaul, the vice president of web security at Akamai. He shares his story about his experiences during the Dyn Inc. DDoS attacks, and offers some details about the Reaper botnet.
Kategorie: Hacking & Security

Security Vulnerabilities in Certificate Pinning

8 Prosinec, 2017 - 11:11
LinuxSecurity.com: New research found that many banks offer certificate pinning as a security feature, but fail to authenticate the hostname. This leaves the systems open to man-in-the-middle attacks.
Kategorie: Hacking & Security

10 useful ncat (nc) Command Examples for Linux Systems

8 Prosinec, 2017 - 11:09
LinuxSecurity.com: ncat or nc is networking utility with functionality similar to cat command but for network. It is a general purpose CLI tool for reading, writing, redirecting data across a network. It is designed to be a reliable back-end tool that can be used with scripts or other programs. It's also a great tool for network debugging, as it can create any kind of connect one can need.
Kategorie: Hacking & Security

WordPress hit with keylogger, 5,400 sites infected

8 Prosinec, 2017 - 11:07
LinuxSecurity.com: The cryptomining malware that has been pushed from cloudflare.solutions since earlier this year has been modified with the addition of keylogger functionality to its mix with PublicWWW reporting that more than 5,400 Wordpress sites are now infected.
Kategorie: Hacking & Security

Quantum Computing Is the Next Big Security Risk

7 Prosinec, 2017 - 10:23
LinuxSecurity.com: The 20th century gave birth to the Nuclear Age as the power of the atom was harnessed and unleashed. Today, we are on the cusp of an equally momentous and irrevocable breakthrough: the advent of computers that draw their computational capability from quantum mechanics.
Kategorie: Hacking & Security

The Most Exciting Linux Kernel Stories Of 2017

7 Prosinec, 2017 - 10:21
LinuxSecurity.com: This year on Phoronix has been more than 290 original news articles pertaining to advancements and changes within the Linux kernel. Here are those highlights.
Kategorie: Hacking & Security

FCC Chair Ajit Pai Falsely Claims Killing Net Neutrality Will Help Sick and Disabled People

7 Prosinec, 2017 - 10:15
LinuxSecurity.com: For the duration of the fight over net neutrality, there have been a constant stream of falsehoods pushed by AT&T, Verizon, and Comcast to justify their frontal assault on the popular rules. One popular bogeyman has been that net neutrality rules devastated telecom sector investment, a claim consistently disproven by publicly-accessible SEC filings, earnings reports, independent analysis, and statements to investors from more than a half-dozen industry executives.
Kategorie: Hacking & Security

Build a Privacy-respecting and Threat-blocking DNS Server

5 Prosinec, 2017 - 11:11
LinuxSecurity.com: DNS blackholing can be an powerful technique for blocking malware, ransomware and phishing on your home network. Although numerous public DNS services boast threat-blocking features, these providers cannot guarantee you total privacy.
Kategorie: Hacking & Security

DR.CHECKER - A Soundy Vulnerability Detection Tool for Linux Kernel Drivers

5 Prosinec, 2017 - 11:09
LinuxSecurity.com: DR.CHECKER: A Soundy Vulnerability Detection Tool for Linux Kernel Drivers Tested on Ubuntu >= 14.04.5 LTS
Kategorie: Hacking & Security

BoopSuite - A Suite of Tools for Wireless Auditing and Security Testing

5 Prosinec, 2017 - 11:07
LinuxSecurity.com: BoopSuite is an up and coming suite of wireless tools designed to be easy to use and powerful in scope, that support both the 2 and 5 GHz spectrums. Written purely in python. A handshake sniffer (CLI and GUI), a monitor mode enabling script and a deauth script are all parts of this suite with more to come.
Kategorie: Hacking & Security

Deception: Why It's Not Just Another Honeypot

4 Prosinec, 2017 - 12:32
LinuxSecurity.com: Deception - isn't that a honeypot? That's a frequently asked question when the topic of deception technology arises. This two-part post will trace the origins of honeypots, the rationale behind them, and what factors ultimately hampered their wide-scale adoption.
Kategorie: Hacking & Security

Dirty COW redux: Linux devs patch botched patch for 2016 mess

4 Prosinec, 2017 - 12:29
LinuxSecurity.com: Linus Torvalds last week rushed a patch into the Linux kernel, after researchers discovered the patch for 2016's Dirty COW bug had a bug of its own.
Kategorie: Hacking & Security

There's Now a Dark Web Version of Wikipedia

1 Prosinec, 2017 - 10:59
LinuxSecurity.com: In many parts of the world, like North America, using Wikipedia is taken for granted; hell, there are even Twitter accounts to track government employees editing the internet's free encyclopedia while on the clock. But in other places, like Turkey or Syria, using Wikipedia can be difficult, and even dangerous.
Kategorie: Hacking & Security

Linux laptop-flinger says bye-bye to buggy Intel Management Engine

1 Prosinec, 2017 - 10:57
LinuxSecurity.com: In a slap to Intel, custom Linux computer seller System76 has said it will be disabling the Intel Management Engine in its laptops.
Kategorie: Hacking & Security

New web browsing security tool arrives: DNS over TLS

30 Listopad, 2017 - 11:33
LinuxSecurity.com: Net neutrality is on its death bed. With it gone, ISPs will be able to strip-data-mine your every move on the web. There are answers. One is Tenta's new secure Domain Name System (DNS) resolver, Tenta DNS. This receives and sends the directions to the websites you visit using the secure Transport Layer Security (TLS) protocol
Kategorie: Hacking & Security

5 Free or Low-Cost Security Tools for Defenders

30 Listopad, 2017 - 11:31
LinuxSecurity.com: INSECURITY CONFERENCE 2017 - Washington, DC - Defending the enterprise is increasingly getting complex, with cloud, mobile, and IoT services expanding the potential attack surface and yet IT security budgets may remain constrained to address new threats, Arun DeSouza, CISO and privacy officer with Nexteer Automotive, said in a presentation here today.
Kategorie: Hacking & Security

US charged 3 Chinese security firm hackers with corporate cyber-espionage

29 Listopad, 2017 - 11:36
LinuxSecurity.com: The Department of Justice charged three Chinese nationals working for an internet security firm in China with hacking three companies and stealing hundreds of gigabytes of data and trade secrets from Siemens AG, Moody's Analytics and GPS maker Trimble between early 2011 and May 2017.
Kategorie: Hacking & Security

8 Low or No-Cost Sources of Threat Intelligence

29 Listopad, 2017 - 11:29
LinuxSecurity.com: Organizations know they need to get serious about threat intelligence, but it's not always clear where to find credible information. While just about every security industry vendor website offers up information on the latest threats, some are better than others. Here, we 'll point out the sites that are the most informative and useful.
Kategorie: Hacking & Security

Facebook, Google, IBM, Red Hat Strengthen Open Source License Protection

28 Listopad, 2017 - 10:31
LinuxSecurity.com: Facebook, Google, IBM, and Red Hat today announced they're going to provide greater legal protection for some of the open source code they license. The companies committed to extend more rights to cure open source license compliance errors.
Kategorie: Hacking & Security