Linux Security Week: July 30th, 2012
Source: LinuxSecurity Contributors - Posted by Benjamin D. Thomas   
Linux Security Week Thank you for reading the LinuxSecurity.com weekly security newsletter. The purpose of this document is to provide our readers with a quick summary of each week's most relevant Linux security headlines.

LinuxSecurity.com Feature Extras:

Password guessing with Medusa 2.0 - Medusa was created by the fine folks at foofus.net, in fact the much awaited Medusa 2.0 update was released in February of 2010. For a complete change log please visit http://www.foofus.net/jmk/medusa/changelog

Password guessing as an attack vector - Using password guessing as an attack vector. Over the years we've been taught a strong password must be long and complex to be considered secure. Some of us have taken that notion to heart and always ensure our passwords are strong. But some don't give a second thought to the complexity or length of our password.


  Fear not, Linux admins: There are TOOLS to help you (Jul 23)
 

Most Linux distributions have a significant focus on security. This does not mean they are necessarily ready for production out of the box. Tools like SELinux, excellent firewall options, and robust access controls can make Linux exceptionally secure.

  Hacker Arrested for 2008 DDoS Attacks on Amazon.com (Jul 23)
 

A 25-year-old Russian hacker has been arrested for allegedly orchestrating two DDoS (Denial-of-Service) attacks on Amazon.com and eBay in 2008.

  Hackers and internet security go head-to-head (Jul 24)
 

Rival factions from the Internet security world will mix warily this week at a pair of Las Vegas conferences gathering computer security experts and software savants who make sport of hacking them.

  Android, Nokia smartphone security toppled by Near Field Communication hack (Jul 25)
 

A new technology being added to smartphones running the Google Android and Linux-based MeeGo operating systems makes it trivial for hackers to electronically hijack handsets that are in close proximity, a researcher appearing at the Black Hat security conference said.

  Black Hat - SexyDefense, maximizing the home-field advantage (Jul 26)
 

I’'m attending the BlackHat this year, and one of the most interesting and controversial talks so far was "SexyDefense - Maximizing the home-field advantage" by Iftach Ian Amit.

  Black Hat: Shark-bitten security researcher takes another chomp out of Oracle database (Jul 27)
 

A researcher scored again against Oracle's database by demonstrating at the Black Hat security conference Thursday an exploit that would allow him to take control as an administrator.

  London ready to fight off Olympic hack attacks (Jul 24)
 

Analysts say infiltrating the scoring and timing systems at one of the 35 competition venues around Britain, especially the Olympic stadium in east London, is a target for hackers looking to spread political messages, known as 'hacktivists', and criminal gangs looking to cash in on the Games.

  From Black Hat: Apple's Debut Falls Short (Jul 27)
 

The annual Black Hat hacker conference in Las Vegas on Thursday represented the first time Apple cleared an employee to discuss its internal security so publicly. So when Dallas De Atley, manager of Apple's platform security team, took the stage, the room inside the Caesar's Palace hotel complex was packed tight and thick with anticipation.

  Hacking RPG debuts at Black Hat conference (Jul 27)
 

A role-playing game on hacking has debuted at the ongoing Black Hat hackers' conference in Las Vegas --but it's not the high-tech video game many might imagine.

  Apple Warms Up to Hackers, Plans Presentation at Black Hat (Jul 25)
 

In the 15 years that computer hackers have gathered in Las Vegas for the Black Hat conference, an event where unknowns can become stars and tech heavyweights are skewered for security failures, one company has been noticeably absent: Apple.

  Hacker Will Expose Potential Security Flaw In Four Million Hotel Room Keycard Locks (Jul 24)
 

The next time you stay in a hotel room, run your fingers under the keycard lock outside your door. If you find a DC power port there, take note: With a few hacker tricks and a handful of cheap hardware, that tiny round hole might offer access to your room just as completely as your keycard.

  Nominations are in for the "Security Oscars" (Jul 23)
 

The Pwnie Awards are intended to be the Oscars of the security community. The show has opened with the nomination of the candidates; the winners will be announced on Wednesday 25 July. Similar to Hollywood, this community also has bright stars who sometimes use dubious methods to try and improve their chances of winning a trophy but it also has its losers who must endure mockery and ridicule in the run-up to the event.

Only registered users can write comments.
Please login or register.

Powered by AkoComment!