LWN.net: Security updates for Wednesday
Arch Linux has updated flashplugin (code execution). CentOS has updated kernel (C7: multiple vulnerabilities), libreswan (C7: denial of service), mailman (C7: path traversal attack), and php (C7:...
View ArticleTorrentFreak: Cox Wants Rightscorp’s Piracy Tracking Source Code
Cox Communications, one of the largest Internet providers in the United States, has asked the court to order anti-piracy firm Rightscorp to hand over its tracking source code. The ISP describes the...
View ArticleLWN.net: [$] A report from PGCon 2015
PGCon 2015, the PostgreSQL international developer conference, took place in Ottawa, Canada from June 16 to 20. This PGCon involved a change in format from prior editions, with a "developer...
View ArticleKrebs on Security: Hershey Park Investigates Card Fraud Pattern
Hershey Park, a popular resort and amusement park in Hershey, Pa. has hired a security firm to investigate reports from multiple financial institutions about a possible credit card breach,...
View ArticleSANS Internet Storm Center, InfoCON: green: The Powershell Diaries – Finding...
Powershell has gotten a lot of attention lately as a pentesters tool of choice, since it has access to pretty much every low-level system function in the Microsoft ecosystem, and the AV industry isnt...
View ArticleLWN.net: [$] LWN.net Weekly Edition for June 25, 2015
The LWN.net Weekly Edition for June 25, 2015 is available.
View ArticleSANS Internet Storm Center, InfoCON: green: ISC StormCast for Thursday, June...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleTorrentFreak: UK Authorities Launch Facebook Piracy Crackdown
Trading standards officers and police are carrying out a crackdown across England, Wales and Northern Ireland against those who offer pirate and counterfeit products via Facebook. Interestingly,...
View ArticleSANS Internet Storm Center, InfoCON: green: Web security subtleties and...
The goal of a penetration test is to report all identified vulnerabilities to the customer. Of course, every penetration tester puts most of his effort into finding critical security vulnerabilities:...
View ArticleБлогът на Юруков: На пазар за кметове и общински съветници
Преди седмица кабинетът публикува справка за сменените адресни регистрации. Поместена беше в правителствения портал за отворени данни, от където всеки може да я свали и анализира. В последните дни...
View ArticleSchneier on Security: Baseball Hacking: Cardinals vs. Astros
I think this is the first case of one professional sports team hacking another. No idea if it was an official operation, or a couple of employees doing it on their own initiative.
View ArticleRaspberry Pi: Chickens redux
Regular readers with an interest in poultry will be all agog to find out what we’re posting about today; yesterday’s post covered a chicken coop with automated doors, and we promised more chickens...
View ArticleLWN.net: Thursday’s security updates
CentOS has updated nss (C7; C6: cipher downgrade) and nss-util (C7; C6: cipher downgrade). Debian has updated cacti (three vulnerabilities). Fedora has updated xen (F20: multiple vulnerabilities)....
View ArticleBackblaze Blog | The Life of a Cloud Backup Company: Why Backblaze Bought a...
What’s in a Domain Name? When Brian Wilson (our CTO) co-founded Backblaze, he already had a website called www.codeblaze.com (it was designed in the early 2000s by Casey Jones, who co-founded and...
View ArticleTorrentFreak: Piracy Concerns May Soon Kill Domain Name Privacy
Several organizations including domain name registrar Namecheap are asking the public to protest a new ICANN proposal that will ban private domain name registrations. The proposal was heavily lobbied...
View ArticleSchneier on Security: Yet Another Leaker — with the NSA’s French Intercepts
Wikileaks has published some NSA SIGINT documents describing intercepted French government communications. This seems not be from the Snowden documents. It could be one of the other NSA leakers, or it...
View ArticleLWN.net: Joint Statement from the UCC and KC
The Ubuntu Community Council (UCC) and Kubuntu Council (KC) have issued a joint statement regarding the conflict between Jonathan Riddell and the UCC. "We have mutually agreed that KDE is important to...
View ArticleLWN.net: Ardour 4.1 released
Version 4.1 of the Ardour digital audio workstation software has been released. There are some new features in the release including input gain control, support for capture-only and playback-only...
View Articlexkcd.com: Team Effort
This post was syndicated from: xkcd.com and was written by: xkcd.com. Original post: at xkcd.com
View ArticleSANS Internet Storm Center, InfoCON: green: Cisco default credentials –...
Cisco today released a security advisory announcing that some of Ciscos IronPort virtual appliance products contain multiple default SSH keys. To quote:A vulnerability in the remote support...
View Article