We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.
Intrusion detection specialists Internet Storm Center (ISC) on Monday raised an alarm for a fake PayPal site using a valid SSL (define) to dupe users into giving up personal information. By using a legitimate SSL certificate to masquerade as a . . .
Internet Security Systems Inc. last week unveiled its first Catastrophic Risk Index, a compilation of the 31 most serious current vulnerabilities and attacks. The index is designed to give administrators a constantly updated quick-reference list of the issues that should be their top priorities in protecting networks.. . .
Computer hackers vying in a global contest on Sunday defaced a slew of Web sites, but the damage was confined to the Internet's backwater of small, unsecured sites, security officials said. The "Defacer's Challenge" got off to a quick start . . .
A few years ago, web defacements were largely limited to individual sites, conducted by small groups of security enthusiasts with a bone to pick. Whether it was a political message, a technical statement or an expression of love to a girlfriend, . . .
A group of hackers claim to have broken all security measures on the Xbox games console without modifying the hardware, prompting Microsoft to threaten legal action.. . .
The government and private technology experts warned Wednesday that hackers plan to attack thousands of Web sites Sunday in a loosely coordinated "contest" that could disrupt Internet traffic. Organizers established a Web site, defacers-challenge.com, listing in broken English the rules for . . .
The Trojan scans random ports on random machines, each time sending an initial SYN packet. One of the few identifiable characteristics of the program is a window size of 55808 on each of the packets it transmits. It also spoofs the . . .
Confidential vulnerability information managed by the CERT Co-ordination Centre has again been leaked to the public, following a flurry of such leaks in March. The latest information concerns a flaw in PDF readers for Unix and could allow a remote . . .
A central California man plead guilty Thursday to two charges stemming from an attack on the Web site of the Arab news service Al-Jazeera during the early days of the Iraq conflict. In a plea agreement with the U.S. Attorney's . . .
The U.S. government is warning financial institutions about a virus-like infection that has targeted computers at roughly 1,200 banks worldwide, trying to steal corporate passwords. The FBI is investigating what private security experts believe to be the first Internet attack . . .
"Not only can we turn back the clock on an attack to undo the damage, we can also go back to any point during the attack to observe exactly how the intruder breached the system," says University of Michigan computer-science professor Peter Chen. Traveling back in time may be the way to thwart hack attacks, say computer scientists at the University of Michigan.. . .
We present a new class of low-bandwidth denial of service attacks that exploit algorithmic deficiencies in many common applications' data structures. Frequently used data structures have ``average-case'' expected running time that's far more efficient than the worst case. For example, both . . .
Most businesses in Asia have suffered a hacker attack - despite the fact that nearly all of them have some sort of security software. A survey has found that three-quarters of businesses in Asia have suffered from network intrusions in . . .
Here in his hometown, Michael is a respected computer programmer. In the United States, he's a wanted man. Two and a half years ago, his former boss Vasiliy Gorshkov and co-worker Alexey Ivanov were arrested for hacking and extorting a . . .
im Fiebig once said that no one should be allowed to play the violin until they have mastered it. It is a humorous paradox, and for those who have been in the proximity of a fledgling violinist, one with merit. . . .
The Stoughton Board of Education Tuesday night voted unanimously to expel a Stoughton High School student for illegally gaining entrance to school computers and altering grades and attendance records. Monday night's expulsion hearing was the first of three separate hearings scheduled for this week for the three students alleged to have been the main actors in the scheme. The expulsion hearing was closed to the press and public. . . .
Nick submits ISS intentionally offered students the chance to download software designed to "Prevent your computer from contributing to the spread of worms/trojans to other computer systems" from a server left purposely unsecured, on which any software offered for . . .
An avalanche of data blocked access to the SCO Group's Web site for several hours Friday, said the company, which has come under fire from Linux fans for an ongoing lawsuit against IBM. At 10:45 a.m., the Unix and Linux . . .
One of the world's largest IT security companies, Internet Security Systems has been left with egg on its face after one of its Web servers was defaced by intruders. The Web page, xfiw.iss.net.au, or X-Force Internet Watch, was defaced with . . .
Nick submits The Hacker Wargame Research Project hackerwargame.org quietly sprang up with little publicity around the middle of April 2003. It is a Hacker Wargame just like hack.datafort.net or http://roothack.org/, but that's where the similarities end. Corporate . . .
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
