LinuxSecurity.com

Syndikovat obsah
The central voice for Linux and Open Source security news.
Aktualizace: 19 hodin 56 min zpět

Oracle open-sources DTrace under the GPL

19 Únor, 2018 - 11:01
LinuxSecurity.com: Oracle appears to have open-sourced DTrace, the system instrumentation tool that Sun Microsystems created in the early 2000s and which has been beloved of many-a-sysadmin ever since. As noted by developer Mark J. Wielaard, this commit by an Oracle developer shows that something is afoot.
Kategorie: Hacking & Security

Hackers sentenced for SQL injections that cost $300 million

19 Únor, 2018 - 11:00
LinuxSecurity.com: Heartland Payment Systems: remember that decade-old breach? What was then the sixth-largest payments processor in the US announced back in 2009 that its processing systems had been breached the year before.
Kategorie: Hacking & Security

Global security crackdown, a host of code nasties, Brit cops mocked, and more

19 Únor, 2018 - 10:56
LinuxSecurity.com: At the Munich Security Conference in Germany, major companies, including Siemens, Airbus, Allianz, Daimler Group, IBM, NXP, SGS and Deutsche Telekom, signed a Charter of Trust for cybersecurity. The signatories were joined by Elżbieta Bieńkowska, the EU Commissioner for Internal Market, Industry, Entrepreneurship and Small- and Medium-sized Enterprises, and Canada's foreign minister and G7 representative Chrystia Freeland.
Kategorie: Hacking & Security

New EU Privacy Law May Weaken Security

16 Únor, 2018 - 12:03
LinuxSecurity.com: Companies around the globe are scrambling to comply with new European privacy regulations that take effect a little more than three months from now. But many security experts are worried that the changes being ushered in by the rush to adhere to the law may make it more difficult to track down cybercriminals and less likely that organizations will be willing to share data about new online threats.
Kategorie: Hacking & Security

Meltdown-Spectre flaws: We've found new attack variants, say researchers

16 Únor, 2018 - 11:43
LinuxSecurity.com: Researchers have developed a tool to uncover new ways of attacking the Meltdown and Spectre CPU side-channel flaws, which may force chipmakers like Intel to re-examine already difficult hardware mitigations.
Kategorie: Hacking & Security

Raw sockets backdoor gives attackers complete control of some Linux servers

16 Únor, 2018 - 11:42
LinuxSecurity.com: A stealthy backdoor undetected by antimalware providers is giving unknown attackers complete control over at least 100 Linux servers that appear to be used in business production environments, warn researchers.
Kategorie: Hacking & Security

With Intel's updated bug bounty program, you could earn big bucks for finding the next Meltdown

15 Únor, 2018 - 14:44
LinuxSecurity.com: Intel has updated its bug bounty program, offering up to $250,000 to anyone identifying vulnerabilities in its hardware and software. The key update here is that the program is now open to everyone through the HackerOne platform -- it was previously open to selected security researchers on an invite-only basis.
Kategorie: Hacking & Security

A potent botnet is exploiting a critical router bug that may never be fixed

15 Únor, 2018 - 14:43
LinuxSecurity.com: A fast-moving botnet that turns routers, cameras, and other types of Internet-connected devices into potent tools for theft and destruction has resurfaced again, this time by exploiting a critical vulnerability that gives attackers control over as many as 40,000 routers. Despite the high stakes, there's no indication that the bug will be fixed any time soon, if at all.
Kategorie: Hacking & Security

Unsecured server exposed thousands of FedEx customer records

15 Únor, 2018 - 14:42
LinuxSecurity.com: FedEx has exposed private information belonging to thousands of its customers after a legacy server was left open without a password.
Kategorie: Hacking & Security

Hack the Air Force 2.0 uncovers over 100 vulnerabilities

15 Únor, 2018 - 14:41
LinuxSecurity.com: The second Hack the Air Force bug bounty challenge, Hack the Air Force 2.0, has resulted in 106 vulnerabilities being reported and fixed. On Thursday, bug bounty platform HackerOne revealed that the 20-day competition to find vulnerabilities in federal systems resulted in $103,883 in payouts, bringing the total amount of financial rewards to over $233,000 to date.
Kategorie: Hacking & Security

Adding Encryption To printk()

14 Únor, 2018 - 11:30
LinuxSecurity.com: When is security not security? When it guards against the wrong people or against things that never happen. A useless security measure is just another batch of code that might contain an exploitable bug. So the Linux developers always want to make sure a security patch is genuinely useful before pulling it in.
Kategorie: Hacking & Security

Managing open-source mobile security and privacy for activists worldwide

14 Únor, 2018 - 11:22
LinuxSecurity.com: Managing open-source mobile security and privacy for activists worldwide | Salted Hash Ep 18
Kategorie: Hacking & Security

You've heard the advice before: Whether you're in the office or on the road, a VPN is one of the bes

14 Únor, 2018 - 11:20
LinuxSecurity.com: VPN is an acronym for Virtual Private Network. The purpose of a VPN is to provide you with security and privacy as you communicate over the internet.
Kategorie: Hacking & Security

Maybe Better If You Don't Read This Story on Public WiFi

13 Únor, 2018 - 11:37
LinuxSecurity.com: In his backpack, Wouter Slotboom, 34, carries around a small black device, slightly larger than a pack of cigarettes, with an antenna on it. I meet Wouter by chance at a random cafe in the center of Amsterdam. It is a sunny day and almost all the tables are occupied. Some people talk, others are working on their laptops or playing with their smartphones.
Kategorie: Hacking & Security

All HTTP websites to soon be marked as "not secure" by Google Chrome

13 Únor, 2018 - 11:29
LinuxSecurity.com: If you're still running a website that is still using insecure HTTP then it's time to wake up and drink the coffee. Because unless you take action soon, you're going to find many of your visitors are going to distrust your website.
Kategorie: Hacking & Security

Install OpenStack on Ubuntu

13 Únor, 2018 - 11:28
LinuxSecurity.com: Using the cloud to create your own cloud. We will be using DigitalOcean to give a peek inside OpenStack - A cloud management operating system that's setting a standard for the entire industry.
Kategorie: Hacking & Security

Attackers Use Infected Plug-In to Install Cryptomining Tool on Over 4200 Websites

13 Únor, 2018 - 11:21
LinuxSecurity.com: Over 4,200 websites were infected last weekend with a tool that quietly used the computers of people visiting the sites to mine for the Monero cryptocurrency.
Kategorie: Hacking & Security

Until last week, you could pwn KDE Linux desktop with a USB stick

13 Únor, 2018 - 10:54
LinuxSecurity.com: A recently resolved flaw in the KDE Linux desktop environment meant that files held on a USB stick could be executed as soon as they were plugged into a vulnerable device.
Kategorie: Hacking & Security

How a Low-Level Apple Employee Leaked Some of the iPhone's Most Sensitive Code

12 Únor, 2018 - 12:09
LinuxSecurity.com: On Wednesday, an anonymous person published the proprietary source code of a core and fundamental component of the iPhone's operating system.
Kategorie: Hacking & Security

Linux Meltdown patch: 'Up to 800 percent CPU overhead', Netflix tests show

12 Únor, 2018 - 12:08
LinuxSecurity.com: The Linux mitigation for Meltdown known as kernel page table isolation (KPTI) can cause a massive drain on CPU performance, according to an analysis by Brendan Gregg, a senior performance architect at Netflix.
Kategorie: Hacking & Security