security

Rabbit Beating Up Snake

Schneier on Security - Fri, 2015-07-03 13:13
It's the Internet, which means there must be cute animal videos on this blog. But this one is different. Watch a mother rabbit beat up a snake to protect her children. It's impressive the way she keeps attacking the snake until it is far away from her nest, but I worry that she doesn't know enough to grab the snake...
Categories: security

Fedora 22 mariadb-10.0.20-1.fc22

LinuxSecurity.com - Fri, 2015-07-03 10:50
LinuxSecurity.com: This is an update to most recent version 10.0.20, that also fixes CVE-2015-3152.
Categories: linux, news, security

Clever System of Secure Distributed Computation

Schneier on Security - Fri, 2015-07-03 07:38
This is really clever: Enigma's technique -- what cryptographers call "secure multiparty computation" -- works by mimicking a few of the features of bitcoin's decentralized network architecture: It encrypts data by splitting it up into pieces and randomly distributing indecipherable chunks of it to hundreds of computers in the Enigma network known as "nodes." Each node performs calculations on its...
Categories: security

Akamai Identifies Old Protocol in New DrDoS Attacks

LinuxSecurity.com - Fri, 2015-07-03 06:44
LinuxSecurity.com: An old protocol found in SOHO routers may be responsible for recent DrDoS attacks, says the security steam at Akamai. Akamai, through the company's Prolexic Security Engineering & Research Team (PLXsert), issued an alert today for an old protocol that could be used in Distributed Reflection Denial of Service attacks (DrDoS) attacks.
Categories: linux, news, security

Security News This Week: Your VPN Probably Isn't Private

LinuxSecurity.com - Fri, 2015-07-03 06:43
LinuxSecurity.com: So many hacks, so few days in the week to write alarming stories about every one. Here's our roundup of what you have may missed this week.
Categories: linux, news, security

The last seconds are ticking off the U.S. IPv4 network clock

LinuxSecurity.com - Fri, 2015-07-03 06:41
LinuxSecurity.com: The American Registry for Internet Numbers (ARIN), the nonprofit group that manages Internet addresses for Canada, most Caribbean countries, and the United States, announced that it has activated its Unmet Request Policy. What that means is that there are no longer enough IPv4 address blocks available for the demand.
Categories: linux, news, security

Red Hat: 2015:1207-01: firefox: Critical Advisory

LinuxSecurity.com - Thu, 2015-07-02 22:44
LinuxSecurity.com: Updated firefox packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Critical security [More...]
Categories: linux, news, security

Details of the NSA's XKEYSCORE

Schneier on Security - Thu, 2015-07-02 12:16
The Intercept has published a highly detailed two-part article on how the NSA's XKEYSCORE works, including a huge number of related documents from the Snowden archive. So much to digest. Please post anything interesting you notice in the comments....
Categories: security

Fedora 21 drupal7-7.38-1.fc21

LinuxSecurity.com - Thu, 2015-07-02 09:08
LinuxSecurity.com: - Release 7.38 is a security fix release- Upstream release notes: https://www.drupal.org/drupal-7.38-release-notes
Categories: linux, news, security

Fedora 22 drupal7-7.38-1.fc22

LinuxSecurity.com - Thu, 2015-07-02 09:07
LinuxSecurity.com: - Release 7.38 is a security fix release- Upstream release notes: https://www.drupal.org/drupal-7.38-release-notes
Categories: linux, news, security

Fedora 21 drupal6-6.36-1.fc21

LinuxSecurity.com - Thu, 2015-07-02 09:06
LinuxSecurity.com: - Release 6.36 is a security fix release- Upstream release notes: https://www.drupal.org/drupal-6.36-release-notes
Categories: linux, news, security

Fedora 22 drupal6-6.36-1.fc22

LinuxSecurity.com - Thu, 2015-07-02 09:06
LinuxSecurity.com: - Release 6.36 is a security fix release- Upstream release notes: https://www.drupal.org/drupal-6.36-release-notes
Categories: linux, news, security

Debian: 3299-1: stunnel4: Summary

LinuxSecurity.com - Thu, 2015-07-02 07:49
LinuxSecurity.com: Security Report Summary
Categories: linux, news, security

How to access Wi-Fi anonymously from miles away

LinuxSecurity.com - Thu, 2015-07-02 05:30
LinuxSecurity.com: Staying anonymous online is difficult, if not almost impossible. Standard traffic can be monitored, government agencies enjoy slurping vast amounts of data, and even networks such as Tor and VPNs can only protect you so far. For journalists, activists, political dissidents and -- yes -- criminals, this can mean their activities are open to spying eyes.
Categories: linux, news, security

Workarounds, kludges, and hacks that will improve your life

LinuxSecurity.com - Thu, 2015-07-02 05:29
LinuxSecurity.com: Life would be simpler if every piece of technology we dealt with worked in an obvious and straightforward way. Life would also be a lot duller.
Categories: linux, news, security

Attackers Revive Deprecated RIPv1 Routing Protocol in DDoS Attacks

LinuxSecurity.com - Thu, 2015-07-02 05:27
LinuxSecurity.com: A long-deprecated-and aptly named-routing protocol, RIPv1, still has some life to it. Hackers, since the middle of May, have been carrying out reflection- and amplification-style distributed denial of service attacks using home office and small business routers still running on the old protocol.
Categories: linux, news, security

Office of Personnel Management Data Hack

Schneier on Security - Wed, 2015-07-01 07:32
I don't have much to say about the recent hack of the US Office of Personnel Management, which has been attributed to China (and seems to be getting worse all the time). We know that government networks aren't any more secure than corporate networks, and might even be less secure. I agree with Ben Wittes here (although not the imaginary...
Categories: security

OpenDNS Acquisition Gives Cisco Big Security Data

LinuxSecurity.com - Wed, 2015-07-01 05:23
LinuxSecurity.com: Cisco continues to spend on security, today announcing its intent to acquire San Francisco-based OpenDNS for $635 million. OpenDNS' domain name system and cloud-based security services bring threat data collected from those platforms to Cisco's security offerings.
Categories: linux, news, security

DDoS Attackers Exploiting '80s-Era Routing Protocol

LinuxSecurity.com - Wed, 2015-07-01 05:22
LinuxSecurity.com: Latest wave of DDoS attacks abuses small office-home routers via the 27-year-old, outdated Routing Information Protocol Version 1 (RIPv1).
Categories: linux, news, security

Encryption is Often Implemented Incorrectly (June 26, 2015)

SANS NewsBites - Tue, 2015-06-30 16:39

According to a report from Veracode, many software developers are not implementing encryption correctly.......

Categories: security

Pages