cipher: Security

Sat, 14 Jun 2003 14:31:01 GMT

Should I restart? Irak is still a major mess! Lies, lies, lies!

SecurityFocus HOME News: RIAA messaging gambit faces countermeasures

Sat, 17 May 2003 21:32:50 GMT

To the Recording Industry Association of America, sending threatening messages to online music swappers is a potentially effective way to educate the public that trading copyrighted material is wrong. But to security geeks in the file trading community, the technique is just another volley in the electronic war with peer-to-peer opponents... and a rather trivial one at that.

Sat, 17 May 2003 21:06:55 GMT

Matrix Sequel Has Hacker Cred. Trinity uses a 'sploit [The Register] The real origin of the story is here http://www.securityfocus.com/news/4831

Sat, 17 May 2003 21:01:47 GMT

New Safari Beta fixes security hole; Online Banking compatibility. Apple has released a minor update to its Safari web browser, patching a recently discovered security hole that made it "possible to spoof SSL sites." Safari 1.0 Beta 2 (v74) is available via Software Update and on Apple's very own Safari page. Early reader reports indicate that compatibility with several online banking sites -- which prior to this update experienced authentication and connection failures -- has been sufficiently increased. Apple is being brief on exactly... [Spymac]

Thu, 08 May 2003 20:11:28 GMT

Companies still fighting rogue WLANs. The fight goes on against unauthorized access points as companies work to prevent WLAN clients on home systems from injecting Trojan horses into business networks. [Computerworld Security News]

Thu, 08 May 2003 20:09:53 GMT

Microsoft fixes Passport flaw. The software giant works overnight to repair the password reset feature of its online identity service after a flaw was discovered that put millions of accounts at risk. [CNET News.com]

Sun, 04 May 2003 15:49:59 GMT

Software Bullet Is Sought to Kill Musical Piracy. Record companies are financing the development of software that would sabotage the computers of people that download pirated music. By Andrew Ross Sorkin. [New York Times: NYT HomePage]

... black hat hackers ...

Who'll put'em to jail?

Sun, 04 May 2003 15:46:27 GMT

Exec Shield Overflow Protection [OSNews]

Fri, 02 May 2003 19:06:06 GMT

Back door or root kit? Maybe Netstat can help. Columnist Douglas Schweitzer takes a look at the Netstat command and how it can help you determine if your computer has been infected by a malevolent agent. [Computerworld Security Holes News]

Tue, 29 Apr 2003 20:38:53 GMT

Wi-Fi security gets a boost. The Wi-Fi Alliance announces the first round of products using the latest security spec, as it works to allay concerns about wirelessly transmitting data over networks. [CNET News.com]

Tue, 18 Mar 2003 20:23:31 GMT

Local Root Hole in Linux Kernels. xepsilon writes "A local Linux security hole using ptrace has been discovered that allows a potential attacker to gain root privileges. Linux 2.2.25 has been ... [Slashdot]

Mon, 17 Mar 2003 19:53:57 GMT

Security hole in Windows 2000 servers. Microsoft is warning customers that a vulnerability in Windows 2000 and the company's Web server software is allowing online attackers to take control of corporate servers. [CNET News.com]

Sat, 15 Mar 2003 07:59:22 GMT

Using Memory Errors to Attack a Virtual Machine. gillus writes "A very cool scientific paper from Appel and Govindavajhala that explains how virtual machines like java or .Net can be exploited. How? Quite ... [Slashdot]

Fri, 14 Mar 2003 15:43:19 GMT

Cyber terrorism 'overhyped'. Terrorists are not about to launch an attack in cyberspace, say security experts at the CeBIT technology fair. [BBC News | Technology | UK Edition]

Fri, 14 Mar 2003 15:42:50 GMT

Pakistan Creates Cyber Crime Wing. A Pakistani security agency establishes a special arm to combat cyber crimes. Officials want to avoid having to rely on foreign investigators to track criminals who use the Internet. [Wired News]

Thu, 06 Mar 2003 19:46:51 GMT

UT Austin Hit By Massive Security Breach. mrpuffypants writes "Reported in the Austin-American Statesman: The University of Texas' security was compromised over the weekend, leaking out nearly 60,000 ... [Slashdot]

Wed, 05 Mar 2003 19:48:46 GMT

Privacy Activist Takes on Delta. A boycott of Delta Airlines is being mounted in response to the airline's decision to test a controversial program that requires airline passengers to undergo background checks. By Michelle Delio. [Wired News]

Wed, 05 Mar 2003 18:06:26 GMT

Microsoft's Source Code Actions Speak Louder Than Words. It strikes me as pretty odd that Redmond feels good about its recent decision to provide Windows source code to China, considering that Microsoft executive Jim Allchin claimed not too long ago that showing source code to competitors would be a "national security risk." [osOpinion]

China does not really have a track record to shine in terms of protection of intellectual property either!

Wed, 05 Mar 2003 18:03:27 GMT

Do You Write Backdoors?. quaxzarron asks: "I had a recent experience where one of our group of programmers wrote backdoors on some web applications we were developing, so that he could ... [Slashdot]

Tue, 04 Mar 2003 20:15:02 GMT

Net Hacker Tool du Jour: Google. Hackers often use underground software to gain access to private information on the Net or private computer networks. But the newest trick up their sleeves is a tool all Web users are familiar with. By Christopher Null. [Wired News]

Must read!

Tue, 04 Mar 2003 07:14:52 GMT

Apple posts Security Update 2003-03-03. This dot-fix addresses a problem with send mail, but the mothership suggests all do the install [Insanely Great Mac]

Tue, 04 Mar 2003 07:14:25 GMT

Apple Patches Sendmail Bug Quickly. 90XDoubleSide writes "Apple has released Security Update 2002-03-03 (available through Software Update) which addresses the sendmail vulnerability reported ... [Slashdot]

Mon, 03 Mar 2003 18:41:46 GMT

Honeypots Via VMware?. Loki_1929 asks: "Having just installed a trial of VMware workstation 3.2, I'm left wondering if anyone has used it as part of a security solution on a network. ... [Slashdot] Interesting thought. It would be something like a very controlled cleanroom environment and very easy to restore (could even use the disk setting that allows to roll back any changes). Ideal to find out how people break in. On the other hand you can have multiple honeypot on a single physical box, the pot does not need to be very performant!

Mon, 03 Mar 2003 13:35:53 GMT

Why criminalizing Crypto is wrong There is nothing like the fear of weapons of mass destruction to bring out weary old legislative proposals. [The Register]

Sun, 02 Mar 2003 21:51:37 GMT

Computer Error Grounds Japanese Flights. zephiros writes "Mainichi Daily News reports that a "computer glitch" in Tokyo air traffic control systems resulted in the cancellation of 203 flights this ... [Slashdot]