Home Vulnerabilities Exploits Hacking IT Security Malware
Twitter
RSS

Archive for July 14th, 2010

« Older Entries

DEFCON: Bridging The Gap Between Hardware & Software Hacking

By admin on Wednesday, July 14th, 2010 | No Comments

Hardware hacking was something I got into as a kid but never quite stuck with. No electronics were safe back then, and I often bridged the world of electronics with the physical to give my G.I. Joes something new conquer. That interest has been renewed.

After the Capture the Flag competition was over a couple years ago at DEFCON, I wandered into the Hardware Hacking Village and someone showed me the proper way to solder the USB port onto the conference badge. Soldering was something I’ve tried and done quite poorly in the past, so I was excited to learn how to do it well and use something I’d never heard of beforesolder braid.

Last year, I delved a bit further into the hardware world by buying an Arduino kit and several “shields” for prototyping and adding network connectivity to the device. Following the Read the rest

Read More...

NSA Executive Leaked After Official Reporting Process Failed Him

By admin on Wednesday, July 14th, 2010 | No Comments


A former NSA executive who is fighting government charges of leaking classified information was part of a group that pursued several sanctioned paths to report concerns about an agency spy program, but was repeatedly frustrated by the government’s inaction, according to a report Wednesday.

Thomas Drake, now reduced to working at a Washington, D.C.-area Apple store while awaiting his trial, first notified his superiors at the National Security Agency, then looked to Congress to address his concerns, and finally worked with a group that went to the Defense Department’s inspector general,according to the Washington Post. When all of these avenues failed to net results, he took his information to a reporter at the Baltimore Sun.

Drake now faces a maximum sentence of 35 years in prison if convicted of mishandling classified information and obstructing justice.

Drake’s information involved a datamining program called ThinThread that, after the… Read the rest

Read More...

Cloud tools give Microsoft partners a jump-start

By admin on Wednesday, July 14th, 2010 | No Comments

IDG News Service - Microsoft is giving its partners tools that could help drive more business to its cloud-based services.

At the company’s annual Worldwide Partner Conference (WPC), being held this week in Washington, the new Microsoft channel chief unveiled programs that give Microsoft business partners free access to its cloud software as well as training.

“We’re going to provide a wide array of tools to help partners both drive the deals and once they get the deals, then manage the customers from the support and deployment aspect,” said Jon Roskill, who assumed the role of corporate vice president of the worldwide partner group on July 1.

While earlier in the week, Microsoft CEO Steve Ballmer extolled the virtues of Microsoft’s cloud services to partners, Roskill detailed how Microsoft would help partners get their own services started.

One package, called

Read the rest

Read More...

Mozilla yanks password-stealing Firefox add-on

By admin on Wednesday, July 14th, 2010 | No Comments

Computerworld - Mozilla on Tuesday warned users that a password-stealing add-on slipped into Firefox’s extension gallery more than a month ago had been downloaded nearly 2,000 times before it was detected.

The malicious “Mozilla Sniffer” add-on was yanked from Mozilla’s servers Monday, and added to the Firefox “blocklist,” a last-resort defense that uninstalls potentially-dangerous browser extensions from users’ machines.

Mozilla also notified users of a critical security vulnerability in another add-on, the popular “CoolPreviews,” which currently sits at No. 21 on the Firefox most-downloaded list, saying it had temporarily yanked that plug-in, too.

The Mozilla Sniffer add-on was submitted to the Firefox Add-ons site June 6, Mozilla announced in a blog post yesterday.

“It was discovered that this add-on contains code that intercepts login data submitted to any website, and sends this data to a remote location,” Mozilla confirmed.

Read the rest

Read More...

Mac users increasingly susceptible to security threats

By admin on Wednesday, July 14th, 2010 | No Comments

Most every IT department knows the security risks e-mail and the Internet pose, and most take considerable steps to lock down vulnerable Windows systems. Enterprise Mac administrators need to take precautions against users accidentally or purposefully introducing malware via e-mail or Internet use, too. Just because Macs aren’t subject to the same number or intensity of self-replicating viruses and worms doesn’t mean they aren’t vulnerable to security holes or privacy concerns that can place corporate data or financial information at risk.

Although viruses, spyware, Trojans, worms and other threats typically target the Windows platform, Macs still face vulnerabilities and threats. Security analysis by Secunia, reported in July in its Half Year Report 2010, reveals Apple ranks first in the number of reported vulnerabilities. Secunia notes that the majority of attacks (approximately 80 percent) result from remote sources and further

Read the rest

Read More...
« Older Entries