LinuxSecurity.com
Share your story
The central voice for Linux and Open Source security news
Home News Topics Advisories HOWTOs Features Newsletters About Register

Welcome!
Sign up!
EnGarde Community
Login
Polls
What is the most important Linux security technology?
 
Advisories
Community
Linux Events
Linux User Groups
Link to Us
Security Center
Book Reviews
Security Dictionary
Security Tips
SELinux
White Papers
Featured Blogs
All About Linux
DanWalsh LiveJournal
Securitydistro
Latest Newsletters
Linux Advisory Watch: September 26th, 2014
Linux Security Week: September 22nd, 2014
Subscribe
LinuxSecurity Newsletters
E-mail:
Choose Lists:
About our Newsletters
RSS Feeds
Get the LinuxSecurity news you want faster with RSS
Powered By

  
Hacks/Cracks
We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.



Hacker Group Lizard Squad Takes Down Destiny, Call of Duty, FIFA And More  29 September 2014 
Source: Forbes - Posted by Dave Wreski   
It’s been over a full month since hacker collective ‘Lizard Squad’ rose to notoriety for taking down Sony's PlayStation Network, Xbox Live and other gaming servers, but above all else attracting the FBI’s attention for tweeting out a bomb threat to a Sony executive’s American Airlines flight, which grounded the plane and launched a nationwide hunt for the group.
 
Shellshock makes Heartbleed look insignificant  29 September 2014 
Source: ZDNet Blogs - Posted by Dave Wreski   
Somehow there always seems to be another Internet security disaster around the corner. A few months ago everyone was in a panic about Heartbleed. Now the bug called Shellshock (officially CVE-2014-6271), a far more serious vulnerability, is running uncontrolled over the Internet.
 
Hackers Are Already Using the Shellshock Bug to Launch Botnet Attacks  26 September 2014 
Source: Wired - Posted by Dave Wreski   
With a bug as dangerous as the “shellshock” security vulnerability discovered yesterday, it takes less than 24 hours to go from proof-of-concept to pandemic. As of Thursday, multiple attacks were already taking advantage of that vulnerability, a long-standing but undiscovered bug in the Linux and Mac tool Bash that makes it possible for hackers to trick Web servers into running any commands that follow a carefully crafted series of characters in an HTTP request.
 
Kevin Mitnick, Once the World’s Most Wanted Hacker, Is Now Selling Zero-Day Exploits  25 September 2014 
Source: Wired - Posted by Dave Wreski   
As a young man, Kevin Mitnick became the world’s most notorious black hat hacker, breaking into the networks of companies like IBM, Nokia, Motorola, and other targets. After a stint in prison, he reinvented himself as a white hat hacker, selling his skills as a penetration tester and security consultant.
 
Unix/Linux Bash: Critical security hole uncovered  24 September 2014 
Source: ZDNet Blogs - Posted by Dave Wreski   
The flaw involves how Bash evaluates environment variables. With specifically crafted variables, a hacker could use this hole to execute shell commands. This, in turn, could render a server vulnerable to ever greater assaults.
 
Nude-Photo Hackers Are Sad Apple Ruined Their Fun  24 September 2014 
Source: Wired - Posted by Dave Wreski   
The fixes Apple bolted on to iCloud’s security following its epic spill of stolen celebrity nudes may be far from perfect. But give Apple credit: It made a lot of sex-starved hackers very unhappy.
 
5 reasons why hackers own your organization  23 September 2014 
Source: InfoWorld - Posted by Dave Wreski   
The Target and Home Depot breaches should've been wake-up calls. Instead, the bad guys remain free to wreak havoc everywhere. Last week I noted that most companies are either already hacked or could easily be hacked -- and, when they have anything worth stealing, are probably already owned by multiple APT (advanced persistent threat) groups.
 
Here's What Hackers Can Do With Your CRM Data  15 September 2014 
Source: Forbes - Posted by Alex   
It is clear why malware writers target TGT -0.1% such retailers as Home Depot HD -0.43% and Target. It is obvious, if not pathetic, why hackers break into the cloud to find and publish private nude photos of celebrities. But a company’s customer relationship management data? Well, yes.
 
Apache Warns of Tomcat Remote Code Execution Vulnerability  12 September 2014 
Source: ThreatPost - Posted by Dave Wreski   
Some older versions of the open source Apache Tomcat web server and servlet container, are vulnerable to remote code execution.
 
Leak of '5 MEELLLION Gmail passwords' creates security flap  11 September 2014 
Source: The Register UK - Posted by Dave Wreski   
Plain-text passwords and account names linked to five million Gmail accounts have been leaked onto several Russian forums. Security experts had already confirmed the data seemed legit, albeit approximately three years old, before Google put up its blog post on the subject.
 
<< Start < Prev 1 2 3 Next > End >>

Results 1 - 10 of 2164
    
Partner

 

Latest Features
Peter Smith Releases Linux Network Security Online
Securing a Linux Web Server
Password guessing with Medusa 2.0
Password guessing as an attack vector
Squid and Digest Authentication
Squid and Basic Authentication
Demystifying the Chinese Hacking Industry: Earning 6 Million a Night
Free Online security course (LearnSIA) - A Call for Help
What You Need to Know About Linux Rootkits
Review: A Practical Guide to Fedora and Red Hat Enterprise Linux - Fifth Edition
Yesterday's Edition
Honeypot Snares Two Bots Exploiting Bash Vulnerability
CloudFlare Rolls Out Free SSL
Partner Sponsor

Community | HOWTOs | Blogs | Features | Book Reviews | Networking
 Security Projects |  Latest News |  Newsletters |  SELinux |  Privacy |  Home
 Hardening |   About Us |   Advertise |   Legal Notice |   RSS |   Guardian Digital
(c)Copyright 2014 Guardian Digital, Inc. All rights reserved.