LinuxSecurity.com
Share your story
The central voice for Linux and Open Source security news
Home News Topics Advisories HOWTOs Features Newsletters About Register

Welcome!
Sign up!
EnGarde Community
Login
Polls
What is the most important Linux security technology?
 
Advisories
Community
Linux Events
Linux User Groups
Link to Us
Security Center
Book Reviews
Security Dictionary
Security Tips
SELinux
White Papers
Featured Blogs
All About Linux
DanWalsh LiveJournal
Securitydistro
Latest Newsletters
Linux Advisory Watch: August 29th, 2014
Linux Security Week: August 25th, 2014
Subscribe
LinuxSecurity Newsletters
E-mail:
Choose Lists:
About our Newsletters
RSS Feeds
Get the LinuxSecurity news you want faster with RSS
Powered By

  
Intrusion Detection
We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.



Was the iOS SSL Flaw Deliberate?  27 February 2014 
Source: Schneier on Security - Posted by Dave Wreski   
Last October, I speculated on the best ways to go about designing and implementing a software backdoor. I suggested three characteristics of a good backdoor: low chance of discovery, high deniability if discovered, and minimal conspiracy to implement.
 
Azazel – Userland Anti-debugging & Anti-detection Rootkit  18 February 2014 
Source: Darknet - Posted by Dave Wreski   
Azazel is a userland rootkit written in C based off of the original LD_PRELOAD technique from Jynx rootkit. It is more robust and has additional features, and focuses heavily around anti-debugging and anti-detection. Features include log cleaning, pcap subversion, and more.
 
Can a hacker use a brute-force attack to steal an online password?  17 February 2014 
Source: PC World - Posted by Dave Wreski   
Harish Kumar asked if a brute force attack--which tries random text strings until one turns out to be your password—would work on major websites. “Will Facebook allow millions of failed attempts?”
 
Record-breaking DDoS attack in Europe hits 400Gbps  13 February 2014 
Source: CNET - Posted by Dave Wreski   
A massive distributed-denial-of-service attack Monday reached more than 400Gbps at its peak, about 33 percent greater than last year's Spamhaus attack, the previous DDoS record-holder.
 
Snowden documents show British digital spies use viruses and 'honey traps'  10 February 2014 
Source: The Register UK - Posted by Dave Wreski   
At the start of this week, documents released by whistleblower Edward Snowden detailed DDOS attacks on chatrooms by a British online intelligence unit dubbed the Joint Threat Research Intelligence Group (JTRIG). Now he has released a new trove showing that JTRIG is about much more than purely online annoyances.
 
Hackers use a trick to deliver Zeus banking malware  03 February 2014 
Source: TechWorld - Posted by Dave Wreski   
Zeus is encrypted and contained in an ".enc" file, which security products allow through, according to Malcovery Security
 
Data centres now 'magnets' for DDoS attacks, says Arbor report  28 January 2014 
Source: TechWorld - Posted by Alex   
Data centres have become “magnets” for DDoS attacks with many recording a marked rise in incidents during 2013, Arbor Networks’ latest Worldwide Infrastructure Security Report has found.
 
How Target’s Point-of-Sale System May Have Been Hacked  16 January 2014 
Source: Tripwire - Posted by Dave Wreski   
Target has not revealed much regarding how their massive data breach occurred. To date they have disclosed the breach included 40 million credit cards and 70 million personal records. Target has only stated that the point-of-sale systems were compromised by malware.
 
What a successful exploit of a Linux server looks like  07 January 2014 
Source: arsTechnica - Posted by Dave Wreski   
Like most mainstream operating systems these days, fully patched installations of Linux provide a level of security that requires a fair amount of malicious hacking to overcome. Those assurances can be completely undone by a single unpatched application, as Andre' DiMino has demonstrated when he documented an Ubuntu machine in his lab being converted into a Bitcoin-mining, denial-of-service-spewing, vulnerability-exploiting hostage under the control of attackers.
 
Cloud computing 2014: Moving to a zero-trust security model  02 January 2014 
Source: Network World - Posted by Dave Wreski   
The leaking of classified documents detailing the data collection activities of the U.S. National Security Agency earlier this year reignited some long-standing concerns about the vulnerability of enterprise data stored in the cloud.
 
<< Start < Prev 4 5 6 Next > End >>

Results 31 - 40 of 819
    
Partner

 

Latest Features
Peter Smith Releases Linux Network Security Online
Securing a Linux Web Server
Password guessing with Medusa 2.0
Password guessing as an attack vector
Squid and Digest Authentication
Squid and Basic Authentication
Demystifying the Chinese Hacking Industry: Earning 6 Million a Night
Free Online security course (LearnSIA) - A Call for Help
What You Need to Know About Linux Rootkits
Review: A Practical Guide to Fedora and Red Hat Enterprise Linux - Fifth Edition
Weekend Edition
How Cops and Hackers Could Abuse California’s New Phone Kill-Switch Law
Why Russian hackers are beating us
DQ Breach? HQ Says No, But Would it Know?
Partner Sponsor

Community | HOWTOs | Blogs | Features | Book Reviews | Networking
 Security Projects |  Latest News |  Newsletters |  SELinux |  Privacy |  Home
 Hardening |   About Us |   Advertise |   Legal Notice |   RSS |   Guardian Digital
(c)Copyright 2014 Guardian Digital, Inc. All rights reserved.