We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.
What does it take to work in computer security? Beyond the basic math, science, and analytical skills, "you need tremendous patience and persistence--and you need to not have to sleep much," says Chet Hosmer, cofounder and chief executive officer of Wetstone . . .
The 'Deceptive Duo' are attacking Web sites across the Internet to emphasise online security flaws A group of hackers has defaced dozens of Web sites in the past two weeks and published sensitive data culled from the sites in what it says is an effort to increase awareness of online security risks. . . .
Hacking has been described as a crime, a compulsion, an often troublesome end result of insatiable curiosity run amok. Rarely has anyone who is not a hacker attempted to portray the creation, exploration and subversion of technology as a valid and elegantly creative art form. . . .
In what has now become almost a daily occurence, the Deceptive Duo takes out another high-profile web site. This email address is being protected from spambots. You need JavaScript enabled to view it. sent in comments on their most recent defacement. "Many recent cyberattacks could have been avoided if enterprises were more focused on their security efforts, but users seem not to learn from their mistakes" these words were just pronounced by Richard Mogull, research director for the famous Gartner Institute.. . .
A defense contractor developing a public Web site for the Navy shut down a key computer network this week after hackers gained access to employee passwords and other user information. A Navy spokesman emphasized yesterday that no military secrets were stored on the computer server operated in Mission Valley by Booz Allen Hamilton, a consulting firm working with the Navy in San Diego. . . .
In a blended threat, malicious code can take many forms and can attack your enterprise in a number of different ways. It can also do more than one kind of damage while it's in your system. You might, for example, . . .
Even if you have never banked online, your money may never be completely safe from an electronic heist. Nearly every bank in the United States runs its operations on an internal network that connects to the Internet at some point. Although the banking industry claims that its security is virtually foolproof, others say that any technology can be penetrated under the right circumstances. . . .
A team of hackers, cutting a wide swath of Web-site defacements across the country in what they say is the interests of national security, added servers from Sandia National Laboratories, the U.S. Geological Survey and the National Institute of Standards and Technology (NIST) to a list of conquests today. . . .
This email address is being protected from spambots. You need JavaScript enabled to view it. sent in yet another list of U.S. government sites hacked by the Deceptive Duo group. In the previous week, the blackhat group defaced numerous military web sites, and now online banks and other gov't sites. In addition, passport numbers, account names and emails, as well as bank employee phone numbers were revealed.. . .
Late one recent Sunday night, an executive at a midsized financial services firm received the kind of call everyone in the industry dreads: a demand for $1 million, or else the brokerage's network would crash the next day with a surreptitiously installed program.. . .
By his own account, Marc Maiffret had been up to no good. In and out of several computer hacker groups, the high school dropout realized his life had to change one morning shortly after he turned 17 when he was awakened by an FBI agent holding a gun to his head.. . .
A pair of hackers that recently claimed responsibility for a spree of defacements on US government military web servers, hit the US Office of the Secretary of Defense (OSD) on Friday night and posted data stolen from the US Defense Logistics Agency (DLA). Screenshots of two DLA databases were posted on a subdomain of the Secretary of Defense site at OSD.Mil. . . .
This email address is being protected from spambots. You need JavaScript enabled to view it. writes, "The hacking group called The Deceptive Duo has hacked today into some military servers belonging to the Department of Defense (Defense Logistics Agency) gaining access to some databases and posting them to the defaced pages.. . .
With all the talk about zero day exploits and sometimes esoteric vulnerabilities its easy to lose sight of the role of older, less sophisticated techniques as a mainstay of cracker activity. . . .
U.S. officials warned yesterday that the Chinese military may be searching for ways to attack defense and civilian computer networks in the United States and Taiwan. But they said intelligence analysts have concluded that China so far lacks the ability to cause much disruption. . . .
Hackers are increasingly using South Korea as an entry point to attack computer systems in other countries, a serious situation that could undermine the country's image ahead of the World Cup finals, experts and industry sources said yesterday. . . .
U.S. intelligence officials believe the Chinese military is working to launch wide-scale cyber-attacks on American and Taiwanese computer networks, including Internet-linked military systems considered vulnerable to sabotage, according to a classified CIA report. . . .
The military's might increasingly depends on computers, but that created a target for the enemy. Air Force Academy cadets are finding out this week how hard it can be to protect computers from bad guys. . . .
Security web site zone-h.org is reporting today that a server belonging to the FAA (Federal Aviation Administration) has been today hacked by a team named The Deceptive Duo. The server was mounting Windows NT4 operative system and was hacked using a database vulnerability. The same Deceptive Duo has hacked yesterday other two flight-related servers,(https://www.saudia.com/ and https://www.iflyrga.com), but this time the game turned to be more serious. . . .
PHPNuke seems to have a horrible security track record, but continues to be quite popular. No statement from the PHPNuke folks yet, but if you're using a rapid site development tool, don't forget to consider the security implications. "Cross site . . .
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
