In each issue you can find information concerning typical use of Linux: safety,
databases, multimedia, scientific tools, entertainment, programming, e-mail,
news and desktop environments.
| |
EnGarde Secure Community 3.0.22 Now Available! (Dec 9) |
| |
Guardian Digital is happy to announce the release of EnGarde Secure Community 3.0.22 (Version 3.0, Release 22). This release includes many updated packages and bug fixes and some feature enhancements to the EnGarde Secure Linux Installer and the SELinux policy. http://www.linuxsecurity.com/content/view/145668
|
| |
It's not just Facebook. 4Chan hack Christian's social network, email, Paypal accounts and more… (Aug 23) |
| |
An unknown Christian dating site was recently hacked and whoever responsible managed to gain access to a list of email addresses and passwords. It's likely the file was posted to anonymous message board 4Chan.org and in doing so, some of its frequenters have begun a rampant attack on Facebook, e-store profiles, email accounts and other social networks. http://www.linuxsecurity.com/content/view/149865
|
| |
25 Great Pirate Bay Alternatives (Aug 23) |
| |
TorrentFreak has a great article on a collection of the best torrent search engines and trackers out there, to replace TPB when it gets dissolved or sold. This includes a great Google Torrent Search Engine.The end of the Pirate Bay is nearing. Even if the deal with GGF doesn't go through the current owners are likely to sell to one of the other interested parties. For many BitTorrent fans this means that they have to find an alternative. Luckily there are plenty of good ones out there. http://www.linuxsecurity.com/content/view/149864
|
| |
Jailed SF network administrator faces fewer charges (Aug 23) |
| |
A judge has dismissed most of the charges against a former San Francisco network administrator accused of hijacking the city's computer network he designed and maintained. http://www.linuxsecurity.com/content/view/149863
|
| |
Sweden launches criminal probe of Pirate Bay sale (Aug 22) |
| |
Sweden's Economic Crimes Bureau has begun an investigation into some of the events surrounding the planned acquisition of The Pirate Bay by Global Gaming Factor X.
Swedish newspaper SvD reported Saturday that authorities are looking for possible insider trading after Global Gaming's stock rose sharply a week before Global Gaming announced plans to acquire The Pirate Bay--the best known BitTorrent tracker in the world, which was used by millions to pirate films. http://www.linuxsecurity.com/content/view/149853
|
| |
Fixing Linux (Aug 21) |
| |
Everything has security problems, even Linux. An old and obscure problem with the gcc compiler was recently discovered to have left a security hole in essentially every version of Linux that anyone is likely to be running. Here's what you need to know about fixing it. http://www.linuxsecurity.com/content/view/149846
|
| |
Torvalds bashes vendor-sec private Linux security list (Aug 21) |
| |
Torvalds has never really been a fan of the vendor-sec list. Vendor-sec is supposed to be a vendor only list that is not publicly available. It's supposed to ensure that vendors will have the time they need to make fixes. http://www.linuxsecurity.com/content/view/149845
|
| |
Hacker Mitnick may sue AT&T over data breach (Aug 21) |
| |
After having his AT&T wireless account breached and his personal information posted on the Web, famed hacker Kevin Mitnick thought the least the cellular service provider could do was compensate him for his troubles. http://www.linuxsecurity.com/content/view/149844
|
| |
What's really the safest Web Browser? (Aug 20) |
| |
It's hard to believe that people will actually believe the new NSS Labs report that claims Internet Explorer is safer than other Web browsers at blocking "Socially Engineered Malware" (PDF Link), but I have to remind myself of two things. One, not everyone reads the fine print, which reveals that Microsoft paid for this report. And, two, not everyone is an IT professional who follows this stuff for a living. http://www.linuxsecurity.com/content/view/149820
|
| |
The GOAL of Security (Aug 20) |
| |
Do you know THE Goal of your organization? Why does it exist? What's its purpose?
Even if you work for a "security company," its main goal is not security (or at least it shouldn't be). I know that this sounds like sacrilege, but its not. The main goal of most private sector companies is to make money. In most companies, providing security doesn't make money. It's an operational expense or an investment. http://www.linuxsecurity.com/content/view/149819
|
| |
Network Forensics Puzzle Contest (Aug 20) |
| |
One of the friends of the Internet Storm Center, Johnathan Ham, put out a nice Network Forensics Puzzle Contest. Check it out below.
The answers can be sent to the email listed below. (Don't sent them into the Internet Storm Center. It's not our contest!) http://www.linuxsecurity.com/content/view/149818
|
| |
Fabricating DNA Evidence (Aug 20) |
| |
I've filed this one under privacy. Bruce Schneier has always been a good source of privacy and biometrics issues, let alone crypto. This isn't good:
The scientists fabricated blood and saliva samples containing DNA from a person other than the donor of the blood and saliva. They also showed that if they had access to a DNA profile in a database, they could construct a sample of DNA to match that profile without obtaining any tissue from that person. http://www.linuxsecurity.com/content/view/149817
|
| |
SQL injection attacks led to massive data breaches (Aug 19) |
| |
This week's disclosure that the huge data thefts at Heartland Payment Systems and other retailers resulted from SQL injection attacks could finally push retailers into paying serious attention to Web application security vulnerabilities, just as the breach at TJX focused attention on wireless issues. http://www.linuxsecurity.com/content/view/149806
|
| |
Linux kernel vulnerability fixes - Update 2 (Aug 19) |
| |
The Linux developers have released kernel versions 2.6.27.30 and 2.6.30.5 which fix a critical vulnerability revealed last week. The vulnerability, which is found in all 2.4 and 2.6 series Linux kernels since 2001 and for which there is already an exploit, allows users with restricted privileges to obtain root privileges. The developers urgently recommend users update to the new versions. http://www.linuxsecurity.com/content/view/149805
|
| |
Top Security Firm RSA Tries to Silence Blog (Aug 19) |
| |
RSA security, one of the top security firms in the country, has sent takedown notices to a blogger and his hosting company in an effort to silence his discussion of a vulnerability found on a bank web site that RSA helps monitor, according to the blogger. http://www.linuxsecurity.com/content/view/149804
|
| |
Website compromises - what's happening? (Aug 19) |
| |
Recently there seems to have been a lot of activity with websites getting hacked. Folks are getting really frustrated and are looking for answers to what is causing the problems and what they can do to protect their sites from compromise. http://www.linuxsecurity.com/content/view/149803
|
| |
Password Protection Policy (Aug 19) |
| |
Overview Passwords are an integral aspect of our computer security program. Passwords are the front line of protection for user accounts. A poorly chosen password may result in the compromise of critical (organization) resources. As such, all (organization) staff and outside contractors and vendors with access to our systems are responsible for taking the appropriate steps, as outlined below, to select and secure their passwords.
The purpose of this policy is to establish a standard for creation of strong passwords, the protection of those passwords, and the frequency of change. http://www.linuxsecurity.com/content/view/149802
|
| |
11 Vital Tips and Hacks to Protect Your WordPress Admin Area (Aug 18) |
| |
As we continued to emphasize the security of your WordPress admin panel due to the recent attack on our site, we have compiled a fully detailed article that will highlight some of the must have security measures for your WordPress Admin Area. http://www.linuxsecurity.com/content/view/149788
|
| |
3 Indicted in Theft of 130 Million Card Numbers (Aug 18) |
| |
The same guy responsible for the TJX breach, and now serving time, is now accused of stealing 130 million credit cards from 7-Eleven and two unnamed retail chains. The best part is that he once worked with federal authorities to identify co-conspirators in another online theft.The man who prosecutors said had masterminded some of the most brazen thefts of credit and debit card numbers in history was charged on Monday with an even larger set of digital break-ins, The New York Times's Brad Stone reported. http://www.linuxsecurity.com/content/view/149787
|
| |
Hackers Divert Anti-Piracy Website to Torrent Sites (Aug 18) |
| |
Last week, the Portuguese Ministry of Culture decided to shut down or block 28 file-sharing sites. The original complaint came from local anti-piracy outfit MAPiNET. In what appears to be a revenge attack, hackers targeted their website and diverted it to some of the world's biggest torrent sites. http://www.linuxsecurity.com/content/view/149786
|
| |
TJX Hacker Charged With Heartland, Hannaford Breaches (Aug 18) |
| |
The constellation of hacks connected to the TJX hacker is growing.
Albert "Segvec" Gonzalez has been indicted by a federal grand jury in New Jersey -- along with two unnamed Russian conspirators -- on charges of hacking into Heartland Payment Systems, the New Jersey-based card processing company, as well as Hannaford Brothers, 7-Eleven and two unnamed national retailers, according to the indictment unsealed Monday. Gonzalez, a former Secret Service informant, is already awaiting trial over his involvement in the TJX hack.x http://www.linuxsecurity.com/content/view/149785
|
| |
Researchers prove kernel is secure (Aug 17) |
| |
Australian researchers have demonstrated a way to prove core software for mission-critical systems is safe.
The researchers this week said they can prove mathematically that code they have developed, designed to govern the safety and security of systems in aircraft and motor vehicles, is free of many classes of error. http://www.linuxsecurity.com/content/view/149780
|
| |
How 10 digits will end privacy as we know it (Aug 17) |
| |
Internet denizens and urban dwellers alike need to recognize that an era of anonymity is ending.
The population of the world stands at about 7 billion. So it takes only 10 digits to label each human being on the planet uniquely. http://www.linuxsecurity.com/content/view/149779
|
| |
Why Not BitTorrent The Pirate Bay Itself? (Aug 17) |
| |
The Pirate Bay may be going away soon, but that doesn't mean you can't hold onto a piece of the torrent site. Or, heck, why not just take the whole thing, while you're at it? The Pirate Bay is now available as a handy 21.3GB torrent file, for the more sentimental amongst you. http://www.linuxsecurity.com/content/view/149778
|
Only registered users can write comments.
Please login or register.
