Pesquisa personalizada
Linux Security
The central voice for Linux and Open Source security news.
Atualizado: 32 minutos 28 segundos atrás
Security program automatically tracks down missing patches
LinuxSecurity.com: Secunia has updated its Personal Software Inspector (PSI) with the ability to silently download and apply patches from multiple vendors soon after their release. PSI 2.0 is now available in an open beta test,
Virtualize your browser to prevent drive-by malware attacks
LinuxSecurity.com: When you open up a browser session and visit Web sites and click on hyperlinks, do you feel a little apprehensive about the possibility of drive-by malware getting installed on your PC? I sure do, even though I keep my antivirus/antimalware software and other security measures active and up to date. I might be a little paranoid, but for good reason.
Compromising Twitter's OAuth security system
LinuxSecurity.com: Twitter officially disabled Basic authentication this week, the final step in the company's transition to mandatory OAuth authentication. Sadly, Twitter's extremely poor implementation of the OAuth standard offers a textbook example of how to do it wrong.
Congratulations to the VOIP Forensic Challenge winners
LinuxSecurity.com: Late in July 2010, we assessed over 21 solutions that were submitted to the Forensic Challenge on VOIP. The solutions were exceptionally high quality. It is fair to say that we all learnt a lot about this emerging threat in the process of preparing this challenge.
Networked Scanners Offer A Window Into The Enterprise, Researcher Says
LinuxSecurity.com: It happens every day -- a sensitive document lies in the copier room, forgotten by the person who left it on the scanner. No big deal, right? Nobody else was able to read it.
Malware hosted on Google Code project site
LinuxSecurity.com: Malicious hackers are using the Google Code repository to host Trojans horses, backdoors and password stealing keyloggers, according to researchers at Zscaler.
New 'month of bugs' campaign outs LInux-based console flaw
LinuxSecurity.com: A group of security researchers began issuing what they said will be a month-long list of undisclosed bugs, as well as detailed binary analysis of known vulnerabilities. The first zero-day: A Linux-based Web hosting console.
Google disputes bug patching report
LinuxSecurity.com: Google on Monday said that a recent report claiming it failed to patch one-third of the serious bugs in its software had the facts wrong. IBM's X-Force security unit, which released the report last week, acknowledged the error and issued a revised chart that shows Google patched all the vulnerabilities rated "critical" or "high" in its online services.
Flash+Android: good and bad, stopping leaks, and more
LinuxSecurity.com: A quick burst of 9 links for you to chew over, as picked by the Technology team "Tomorrow's WikiLeakers may have to be sneakier than just dumping military docs onto a Lady Gaga disc. The futurists at Darpa are working on a project that would make it harder for troops to funnel classified material to WikiLeaks - or to foreign governments.
IBM Names Itself Worst Company For Fixing Critical Software Security Bugs
LinuxSecurity.com: IBM's security researchers seem to have located the problem. And it is IBM. Last Wednesday, IBM's X-Force security research team published its twice-annual study tracking the latest vulnerabilities and new attacks online.
Private WiFi has Officially Launched its Early Adopters Program
LinuxSecurity.com: In an attempt to help secure the world from hackers while using a public hotspot, Private WiFi has officially launched its WiFi Encryption Software. Until Sept., users can qualify for a month free of the hacker proof service.
Darpa's Star Hacker Looks to WikiLeak-Proof Pentagon
LinuxSecurity.com: Tomorrow's WikiLeakers may have to be sneakier than just dumping military docs onto a Lady Gaga disc. The futurists at Darpa are working on a project that would make it harder for troops to funnel classified material to WikiLeaks - or to foreign governments. And that means if you work for the military, get ready to have your web, email and other network usage monitored even more than it is now.
Cars: The next hacking frontier?
LinuxSecurity.com: That nice, new computerized car you just bought could be hackable. Of course, your car is probably not a high-priority target for most malicious hackers. But security experts tell CNET that car hacking is starting to move from the realm of the theoretical to reality, thanks to new wireless technologies and evermore dependence on computers to make cars safer, more energy efficient, and modern.
Comodo Offers FREE BuyerTrust Protection of $100,000 Coverage With Purchase of SSL Certificate
LinuxSecurity.com: Comodo, a leading Internet security organization, announced today that it is offering a FREE annual subscription to BuyerTrust, a trustmark that is displayed on websites to build trust and confidence, with the purchase of any Comodo SSL Certificate.
Five Reasons Linux Beats Windows for Servers
LinuxSecurity.com: Rapid growth in the market for x86 servers over the past year brought good news for both Linux and Windows, as research firm IDC reported last week.
Unpatched security holes: IBM re-evaluates
LinuxSecurity.com: IBM's X-Force security team has updated the security report for the first half of 2010 it released last week after two vendors questioned the correctness of the team's evaluations. The controversy was sparked by a table containing the ten vendors who left the most security holes unpatched over a period of six months:
Ksplice Now Free for Fedora Users
LinuxSecurity.com: Ksplice, the technology that allows Linux kernel updates without a reboot, is now free for users of the Fedora distribution. Using Ksplice is like "replacing your car's engine while speeding down the highway", and it can potentially save your Linux systems from a lot of downtime. Since Fedora users often live on the bleeding edge of Linux development, Ksplice makes it even easier to do so, and without reboots!
The Big Hacker Conspiracy
LinuxSecurity.com: Is there a big hacker conspiracy happening right now inside your business? Research coming out of the DEFCON hacker convention suggests there is.
Hardware Hack Busts Quantum Encryption
LinuxSecurity.com: Quantum cryptography is absolutely unbreakable, as it relies on the laws of physics to rat out eavesdroppers. But like other encryption methods, it is sometimes only as good as the users and their hardware.
Once-prolific Pushdo botnet crippled
LinuxSecurity.com: Security researchers have disrupted the botnet known as Pushdo, a coup that over the past 48 hours has almost completely choked the torrent of junkmail from the once-prolific spam network.
