|
We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.
|
|
|
Source: The Register UK - Posted by Dave Wreski
|
|
Researchers have discovered a serious weakness in virtually all websites protected by the secure sockets layer protocol that allows attackers to silently decrypt data that's passing between a webserver and an end-user browser. |
|
|
Source: H Security - Posted by Dave Wreski
|
|
At this year's Black Hat Conference, crypto expert Karsten Nohl of SRLabs demonstrated the degate tool that can be used to take a closer look at applications stored on smartcards, such as credit cards and SIM cards. |
|
|
Source: eWeek - Posted by Alex
|
|
The ongoing furor over fake SSL certificates continued to dominate security headlines, while increasing SpyEye botnet activity and leaked patient health information also drew attention the week of Sept. 5. |
|
|
Source: H Security - Posted by Dave Wreski
|
|
The OpenSSH development team has announced the release of version 5.9 of its open source SSH (Secure Shell) implementation. Compared to the OpenSSH 5.8 release from 7 months ago, which was primarily a security update, the latest update includes a wider variety of changes including the addition of new SHA256-based HMAC (Hash-based Message Authentication Code) transport integrity modes. |
|
|
Source: EFF - Posted by Anthony Pell
|
|
What’s worse than discovering that someone has launched a man-in-the-middle attack against Iranian Google users, silently intercepting everything from email to search results and possibly putting Iranian activists in danger? Discovering that this attack has been active for two months.
|
|
|
Source: Wired - Posted by Alex
|
|
Ever since security giant RSA was hacked last March, anti-virus researchers have been trying to get a copy of the malware used for the attack to study its method of infection. But RSA wasn’t cooperating, nor were the third-party forensic experts the company hired to investigate the breach.
|
|
|
Source: H Security - Posted by Anthony Pell
|
|
A team of researchers has discovered a first vulnerability in the AES encryption standard that shortens the algorithm's effective key length by two bits. This means that the usual key lengths of 128, 192 and 256 bits are reduced to 126, 190 and 254 bits. |
|
|
Source: Information Week - Posted by Anthony Pell
|
|
A theme that appears anytime the cloud is discussed in the context of IT is security. The general direction of this concern is the prevention of unauthorized access to cloud-hosted data and apps. If the topic is pursued, rather than just acknowledged as an issue, it generally forks into two main threads: preventing access by outside parties (hackers, crackers, protesters, and the like) and preventing access by inside parties, such as unauthorized employees. |
|
|
Source: Ubuntu Manual - Posted by Dave Wreski
|
|
Truecrypt, is a free and open-source disk encryption software. In this post we will show you how to encrypt all your data using Truecrypt in 11 easy steps. |
|
|
Source: The Register UK - Posted by Dave Wreski
|
|
Security researchers have discovered a "timing attack" that creates a possible mechanism for a hacker to extract the secret key of a TLS/SSL server that uses elliptic curve cryptography (ECC). |
|
|
<< Start < Prev 1 2 3 Next > End >>
|
| Results 11 - 20 of 996 |
