Linux Security Week: August 27th, 2012
Source: LinuxSecurity Contributors - Posted by Benjamin D. Thomas   
Linux Security Week Thank you for reading the LinuxSecurity.com weekly security newsletter. The purpose of this document is to provide our readers with a quick summary of each week's most relevant Linux security headlines.

LinuxSecurity.com Feature Extras:

Password guessing with Medusa 2.0 - Medusa was created by the fine folks at foofus.net, in fact the much awaited Medusa 2.0 update was released in February of 2010. For a complete change log please visit http://www.foofus.net/jmk/medusa/changelog

Password guessing as an attack vector - Using password guessing as an attack vector. Over the years we've been taught a strong password must be long and complex to be considered secure. Some of us have taken that notion to heart and always ensure our passwords are strong. But some don't give a second thought to the complexity or length of our password.


  A Sinister New Breed of Malware is Growing (Aug 20)
 

Malware attacks seem to be evolving. The traditional viruses, Trojan horses, botnets, and phishing attacks are still a threat, but the next generation malware takes insidious to a whole new level. Thankfully, theres a silver lining as well.

  Microsoft warns of 'man-in-the-middle' VPN password hack (Aug 22)
 

Microsoft yesterday warned Windows users of possible "man-in-the-middle" attacks able to steal passwords for some wireless networks and VPNs, or virtual private networks. It won't issue a security update for the problem, however.

  Hacker attack on your car's computer could be lethal (Aug 20)
 

A team of top hackers working for Intel Corp's security division toil away in a West Coast garage searching for electronic bugs that could make automobiles vulnerable to lethal computer viruses.

  Create A Mac Zombie Army, Cheap: Hacker Emptor (Aug 24)
 

Going once, going twice: The new NetWeird toolkit can be used to infect Apple OS X systems, converting Macs into zombies ready to do your botnet bidding, with prices starting at just $60.

  60-minute security makeover: Prevent your own 'epic hack' (Aug 23)
 

How's this for a digital nightmare? Your Twitter account hijacked; racist and homophobic tweets posted in your name. Your Apple account breached; data wiped from your iPhone, iPad and Mac laptop. Your Gmail password reset by hackers and your Google account deleted.

  Red Hat CEO: We're the cloud leader -- with Linux (Aug 22)
 

When you think about the leading cloud computing companies, does the name Red Hat spring to mind? Jim Whitehurst hopes it does. In fact, the CEO of the rapidly growing, Raleigh, NC-based, open source company, is doing everything in his power to ensure that Red Hat has the widest possible portfolio of tools for your private and hybrid cloud

  Security experts scoff at Mars rover hack threat (Aug 22)
 

The word has been out for more than a week now that the hacktivist group Anonymous is looking to break into the communication system between NASA and the Mars rover, Curiosity.

  Deadline looms for second UK Linux security challenge (Aug 21)
 

The government- and Sophos-sponsored challenge is designed to drum up interest in learning Linux security skills, which are needed for protecting web infrastructure and, in turn, companies

  Sabu gets six months of freedom in exchange for cooperation (Aug 23)
 

Xavier Monsegur, also known as "Sabu", was expected to be sentenced this month by US courts after pleading guilty to 12 counts of "computer hacking conspiracies" last August. Sabu is believed to have been the leader of the Anonymous off-shoot LulzSec

  6 Password Security Essentials For Developers (Aug 20)
 

Solving the weak password challenge requires more than having consumers create strong passwords. Many businesses also need to get a clue about what counts as safe, weak, encrypted, or secure.

  Dell Adds Security To Virtualized Government Environments (Aug 22)
 

Dell is introducing new desktop virtualization solutions (DVS) designed specifically for government customers, intended to facilitate telework and manage security challenges unique to government users. The introduction of these products for the government space is part of Dell's broader virtualization announcement.

  ToorCamp: Adventures in an American hacker camp (Aug 23)
 

ToorCamp is an American-flavored hacker camp that was inspired by European versions like CCC Camp in Germany and HAR Camp in the Netherlands. ToorCamp 2009 was the "first ever full-scale" USA hacker camp and was held inside an abandoned Titan-1 Missile silo at Moses Lake, WA.

Only registered users can write comments.
Please login or register.

Powered by AkoComment!