Linux Security Week: September 12th, 2011
Source: LinuxSecurity Contributors - Posted by Benjamin D. Thomas   
Linux Security Week Thank you for reading the LinuxSecurity.com weekly security newsletter. The purpose of this document is to provide our readers with a quick summary of each week's most relevant Linux security headlines.

LinuxSecurity.com Feature Extras:

What You Need to Know About Linux Rootkits - Rootkits are a way attackers hide their tracks and keep access to the machines they control. The good rootkits are very hard to detect and remove. They can be running on ones computer and no one can even know they have been running. Read more to learn how to detect them on your system.

Review: A Practical Guide to Fedora and Red Hat Enterprise Linux - Fifth Edition - Mark Sobell again delivers the answers to common Linux administration challenges, and provides thorough and step-by-step instructions to configuring many of the common Linux Internet services in A Practical Guide to Fedora and Red Hat Enterprise Linux, Fifth Edition.


  If you think you haven't been hacked this month, think again If you think you haven't been hacked th (Sep 7)
 

I'm assuming the majority of people are sitting smugly reading this thinking ‘of course I haven't!'. You do everything you're supposed to do, right? You've installed a firewall, you've got some anti-virus software, you never follow links in emails or open attachments from someone you don't know or trust.

  DNS hack attack mutilates multiple Web sites (Sep 5)
 

When I first heard that The Register, a popular United Kingdom, technology news site had been hacked, I was doubtful that the site itself had actually been cracked. The first headline I saw read, The Register Hacked. That isn't what I saw. To me, it looked like a typical Domain Name System (DNS) hijack attack.

  Claimed DigiNotar hacker: I have access to four more CAs (Sep 6)
 

The digital miscreant known as ComodoHacker has claimed responsibility for the high-profile DigiNotar digital certificate authority hack.

  10 Notorious Hackers Who Went to Work for 'The Man' (Sep 8)
 

There's an old saying, "If you can't beat them, join them." For many managers and senior executives, the new version may be "If you can't beat them, hire them." Several hackers, known for their skills in finding and exploiting security vulnerabilities in commercial products, have been hired by some of the biggest names in the business to redirect their talents and energy.

  Facebook hacking tool hacks hackers (Sep 8)
 

A case of criminal irony: Tools built to help hackers break into Facebook accounts have been found hiding malware that infects the computers of the would-be criminals who download them.

  Linus Torvalds puts Linux 3.1-RC5 on Github after kernel.org breach (Sep 8)
 

FOLLOWING A SECURITY BREACH at kernel.org, home of the Linux kernel, Linus Torvalds has published the fifth release candidate for Linux 3.1 on Github.

  Into a hacker's head: Dark side of the IT world (Sep 8)
 

For those of you who follow Zero Day, there's something new afoot: A new hacker series. But, this hacker series isn't the standard, "Today this compromise took place" or "Hackers defaced another site." This series focuses on the hacker, his personality, his motivations, his rewards, his mentality and his risks. The series explores the people behind the hacks, the tools, the targets and the temptations.

  OpenSSH 5.9 arrives (Sep 6)
 

The OpenSSH development team has announced the release of version 5.9 of its open source SSH (Secure Shell) implementation. Compared to the OpenSSH 5.8 release from 7 months ago, which was primarily a security update, the latest update includes a wider variety of changes including the addition of new SHA256-based HMAC (Hash-based Message Authentication Code) transport integrity modes.

  How Hacktivism Affects Us All (Sep 7)
 

In December 2010, a group of nearly 3000 activists under the name "Operation Payback" launched online attacks against PayPal, MasterCard, and Visa, briefly knocking the three financial services' sites offline and preventing consumers from accessing ATMs or online banking services.

  Attack on NetNames DNS Servers Shifts Web Traffic Away From Major Websites (Sep 7)
 

Attackers changed the Internet routing information on major Websites to redirect users to different pages over the weekend, affecting dozens of companies, including Microsoft, the United Parcel Service and computer producer Acer.

  Researchers develop botnet drone that targets Wi-Fi networks (Sep 9)
 

SkyNET measures 13x18 inches and fitted with Wi-Fi, 3G mobile data link, and Linux OS. Researchers at the Stevens Institute of Technology have developed 'SkyNET', a stealth network that connects hosts to a botmaster through a mobile drone.

  NSA Extends Label-based Security to Big Data Stores (Sep 8)
 

The National Security Agency has submitted new label-based data store software, called Accumulo, to the Apache Software Foundation, in hopes that other parties will further develop the technology for use in secure systems.

Only registered users can write comments.
Please login or register.

Powered by AkoComment!