DARPA Wants To Get Rid of Password Protection coondoggie writes “Researchers from the Defense Advanced Research Projects Agency will next week detail a new program it hopes will develop technology to dramatically change computer system security authorization. The program, called Active Authentication, looks to develop technology that goes way beyond today’s use of hard to [...]
New, odd SSH brute force behavior, (Sun, Nov 6th) Over the past 72 hours, I’ve noticed a shift in the types of brute force attacks I’m seeing on my SS …(more)… Digest powered by RSS Digest
TheHackersNews: ☛ CapitalOne Bank taken down by Anonymous hackers http://t.co/YyD2uJTD #Security #Anonymous @AnonymousIRC @Anonymousabu @AnonymousPess TheHackersNews: ☛ CapitalOne Bank taken down by Anonymous hackers http://t.co/YyD2uJTD #Security #Anonymous @AnonymousIRC @Anonymousabu @AnonymousPess New, odd SSH brute force behavior, (Sun, Nov 6th) Over the past 72 hours, I’ve noticed a shift in the types of brute force attacks [...]
Free service can tell if your email address has been compromised Has your email or username been snatched by hackers and posted to the Internet? You can find the answer to that question at a new online service called Pwnedlist. Security roundup for Nov. 4: virtualization is key to public cloud security; China, Russia accused [...]
UK Council Loses Memory Stick with Details of 18,000 Residents Rochdale Metropolitan Borough Council somehow managed to lose a memory stick that contained information on 18,000 of their residents. The stick, which was lost in May, contained details such as names, addresses and payment info but fortunately, no bank account records were present. As it [...]
Secunia jumps on vuln reward bandwagon First, catch your rabbit Secunia has launched yet another vulnerability rewards program, the Secunia Vulnerability Coordination Reward Program, which it says is designed to operate independently of particular software vendors.… Report: Popular CAPTCHAs Easily Defeated Thousands Of WordPress Sites Commandeered By Black Hole Carbonite Privacy Breach Leads To Spam [...]
Microsoft unlikely to patch Duqu kernel bug next week The odds are that Microsoft won’t patch the Windows kernel bug next week that the Duqu remote-access Trojan exploits to plant itself on targeted PCs, a researcher said today Critical Windows zero-day bug exploited by Duqu Trojan used booby-trapped Word file to spread The Duqu malware [...]
[WEB SECURITY] Cross-Application Scripting MustLive: [WEB SECURITY] Cross-Application Scripting: Hello participants of Mailing List. <br /> In the middle of October, I've published article about such class of XSS vulnerabilities as Cross-Application Scripting (which is known for a long time). In comparison with other articles about this class of XSS (which I've read), my article [...]