Alerts This Week
Warning Icon 1 825
Alerts This Week
Warning Icon 1 825

Linux Hacks & Cracks - Page 84

We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.

Authorities have dismantled SocksEscort, a service that sold access to a large proxy network built from compromised residential routers. Investigators say much of the infrastructure sat on infected SOHO networking devices, many running embedded Linux...

We’ve been telling ourselves that Snap apps are sandbox...

UNC2891 has been working its way through gaps in ATM se...

Discover Hacks/Cracks News

LS Hmepg 337x500 34 Esm H267

Storm Trojan Variant Spreading Through Email and Web Channels

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A new variant of the "Storm" Trojan is injecting its come-on into blogs, Web-based message forums and Webmail as part of an effort to spread itself to an ever-widening net of PCs, according to a security researcher. Dmitri Alperovitch, principal research scientist at Secure Computing, said Tuesday that the Trojan best known as the "Storm worm" but also pegged as "Peacomm" and half a dozen other names by antivirus vendors -- is using a novel approach to spread. "This is a really neat twist, through the Web channel," said Alperovitch.

LS Hmepg 337x500 34 Esm H267

Legal Issues Halt RFID Security Demo At Black Hat Conference

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Another Black Hat conference, another vulnerability disclosure brouhaha. IOActive's Chris Paget's plan to explain why RFID technology is "insecure and untrustworthy" has run into a legal stumbling block after secure card maker HID Corp. raised objections in a letter that claims possible patent infringement. InfoWorld's Paul Roberts is reporting that HID sent a letter to IOActive ahead of tomorrow's Black Hat Federal demo, a strong hint that the company might attempt to block Paget's presentation. So far, no legal action has been taken against IOActive, Paget or CMP Media, the owners of the Black Hat confab. "We're prepared for the worst," said conference organizer Jeff Moss.

LS Hmepg 337x500 34 Esm H267

Exploring Kernel Malware and Rootkit Threats: F-Secure Insights

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Security analysts have been predicting that kernel rootkits, which cloak their activity by replacing a portion of a program's software kernel with modified code, are expected to continue to grow in frequency in 2007. While rootkit-fighting technologies such as the PatchGuard kernel protection system built into 64-bit versions of Microsoft's new Windows Vista operating system are arriving, most PC users will still be left open to the attacks over the next twelve months, CA has said, and even experienced PC users are vulnerable to their sophisticated techniques.

LS Hmepg 337x500 34 Esm H267

Black Hat 2023: Oracle Advanced Techniques and Data Protection Overview

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

What's in store for Black Hat next week? Then we've got new and better ways to snap your favorite database into itty-bitty pieces, including NGSS' David Litchfield presenting on Advanced Oracle Attack Techniques. David tells me we're going to be hearing about new Oracle attacks that didn't even make it to his most recent book, "The Oracle Hacker's Handbook." That includes such sins as advanced PL SQL injection, exploitation, cursor snarfing, defeating virtual private databases and indirect privilege escalation.

LS Hmepg 337x500 34 Esm H267

Pharming Attack Exploits Critical Flaws Across 50 Global Banks

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

An attack this week that targeted online customers of at least 50 financial institutions in the U.S., Europe, and Asia-Pacific has been shut down, a security expert said Thursday. The attack was notable for the extra effort put into it by the hackers, who constructed a separate look-alike Web site for each financial institution they targeted, said Henry Gonzalez, senior security researcher for Websense Inc.

LS Hmepg 337x500 34 Esm H267

Exposing Botnet Control Interfaces: Cybercriminal Tactics Uncovered

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Websense Security Labs researchers have caught a somewhat rare insight into an interface used by an attacker to control infected systems in a bot network. Websense discovered the new malicious Web sites yesterday, using the company's ThreatSeeker technology. The sites are designed to install Trojan horse bots that seek out banking credentials for more than 50 financial institutions and e-commerce sites from infected machines.

LS Hmepg 337x500 34 Esm H267

Cisco: Access Issue in IP Phones 7935/7936 Critical Design Flaw

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Cisco Systems issued a warning on Wednesday that some of its IP phones could be compromised, allowing unauthorised individuals to bypass security restrictions. In the warning, Cisco detailed flaws for two sets of products. One warning identified two versions of the Cisco Unified IP Conference Station, a speaker phone specially designed for conference rooms. The products are the 7935 version 3.2(15) and 7936 version 3.3(12).

LS Hmepg 337x500 34 Esm H267

Trojan Software Targets Bank Account Holders: A Google Maps Scam

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Account holders with at least two Australian banks have become victims of a phishing scam in which malicious code reveals the physical location of affected IP addresses using Google Maps. Bank account holders in Germany and the USA have also been targeted. The software installs a Trojan capable of key-logging user activity, hijacking infected computers.

LS Hmepg 337x500 34 Esm H267

Drive-By Pharming Risks for Home Broadband Users' Routers

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Millions of broadband users are at risk for a new kind of attack called drive-by pharming, which targets password weaknesses in the victim's router, researchers from Symantec Corp. and Indiana University warned Thursday The threat is greatest for those who don't change their default passwords after using them to bring the router online. According to an informal study by Indiana University, up to 50% of home broadband users fail to reset the password after installing their router.

LS Hmepg 337x500 34 Esm H267

Firefox Cookie Issue: Attackers Manipulate Authentication Risks

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A bug was recently uncovered in Firefox that could allow a malicious Web site to appear authentic. The bug affects the way Firefox handles writing to the "location.hostname" DOM property, according to a posting by security researcher Michal Zalewski on the security mailing list Full Disclosure. The vulnerability could potentially allow a malicious Web site to manipulate the authentication cookies for a third-party Web site.

LS Hmepg 337x500 34 Esm H267

VeriSign's Linux-Based DNS Servers and Their Security Architecture

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A few years ago, I had the privilege of seeing some root DNS servers in action at VeriSign's main headquarters. It's something I had wanted to do for over a decade, and I was literally slightly shaking with excitement (yes, I am that big of a geek). Physical security was high. It took three-factor authentication to get me past the two mantraps and the bomb-blast protected walls. My escort had to use handprint geometry, a PIN, a smart card, and a retinal scan to get me into the inner sanctum.

LS Hmepg 337x500 34 Esm H267

Web Security Survey Finds 70% of Websites at High Risk of Breaches

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The security vendor today is touting its yearlong survey of 3,200 Web sites that purportedly shows 70% of them contained vulnerabilities that pose a medium- to high-level risk of an important data breach. "Without sounding apocalyptic, I believe the 70% figure should send tremors not just ripples in the market," says Kevin Vella, vice president of sales and operations, sounding apocalyptic in a press release.

LS Hmepg 337x500 34 Esm H267

Chinese Hacker Li Jun Creates Tool To Remove Panda Worm

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The Chinese hacker who created and sold a worm, will be allowed to release a seek-and-destroy fix to eradicate it, according to China's state media. Li Jun, one of six people recently arrested by provincial police for creating and then selling the worm known as Panda Burning Joss Stick and Fujacks, has written a seek-and-destroy programme that will eradicate the worm, said the government's official Xinhua News Agency.

LS Hmepg 337x500 34 Esm H267

AACS Breakthrough: Hacker Arnezami Compromises HD-DVD Security

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A hacker claims to have discovered a cryptographic key that can be used to circumvent copy restrictions on HD-DVD and Blu-ray movies, reports Infoworld. The key is a further step toward undermining the next-generation AACS (Advanced Access Content System) encryption system used to copy-protect high-definition media, the article adds. The hacker, going by the name of Arnezami, said he discovered the key by examining what was happening in his computer

LS Hmepg 337x500 34 Esm H267

Emerging Cybercrime Tools: Risks and Implications for Security

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

It's becoming cheaper and easier to get hold of the tools needed to launch a cybercrime attack, security firm RSA claimed on Thursday. Jens Hinrichsen, the company's product marketing manager for fraud auction, said RSA had been monitoring the websites and ICQ channels where malicious hackers and cybercriminals interact. These sites allow participants to share feedback and even review each other's products.

Your message here