|
| Popular Security News |
Spygate Leaks Imperil State Secrets DefenseFirst it was the President George W. Bush administration and then the President Barack Obama administration, which for years have been arguing in court that the state secrets privilege shields the government from lawsuits accusing it of siphoning Americans... |
Spygate Leaks Imperil State-Secrets DefenseFirst it was the President George W. Bush administration and then the President Barack Obama administration, which for years have been arguing in court that the state secrets privilege shields the government from lawsuits accusing it of siphoning Americans... |
Philippine Hacker Publishes Presidents Personal Mobile NumbersMANILA - A Philippine hacker has posted online what he claimed to be the presidents personal mobile telephone numbers, with Benigno Aquinos spokesman Saturday denouncing the act as "cyber vandalism".
read more |
Drug Traffickers Hacked Shipping Systems To Track Large Drug ShipmentsBelgian Police Seize Huge Drug Haul as Hackers Tracked Down
BRUSSELS - Belgian and Dutch authorities investigating computer hacking attacks on shipping companies in the port city of Antwerp have uncovered a massive drug smuggling ring, police said Monday.... |
Researchers Warn Of Hard-coded Passwords In Medical DevicesICS-CERT published an advisory last week centered on a hard-coded password vulnerability that impacts some 300 medical devices – including implanted devices such as pacemakers or defibrillators.
read more |
China Army Newspaper Hits Out At USs PRISM ProgramBEIJING - Chinas official army newspaper Sunday branded the United States Internet surveillance program exposed by former spy Edward Snowden as "frightening", and accused the US of being a "habitual offender" when it comes to network monitoring.
read... |
Congressman Denies Report Claiming NSA Can Listen To Calls Without WarrantsRETRACTED: The senator who allegedly said the U.S. National Security Agency can listen to phone calls of both U.S. residents and foreign nationals without a court order debunks the original report. |
UK Spies Hacked Diplomats Phones, Emails, Guardian ReportsThe Guardian newspaper says that the British eavesdropping agency GCHQ hacked into the emails and phones of foreign diplomats at international conferences to get an edge in high-stakes international negotiations. |
|
| » See More » |
|
| Latest Security News |
Brazil Protesters Keep Up Pressure On GovernmentProtest leaders called for another huge demonstration in Brazil's largest city Tuesday, building on historic turnouts spawned by widespread frustration over decades of government red tape, high prices ... |
Huawei Says Has No Plans To Buy NokiaNEW YORK (Reuters) - Chinese network equipment and cellphone maker Huawei Technologies Co said it has no plans to acquire Nokia, responding to a Financial Times report that it would consider buying the Finish phone maker. The denial came from Huawei's... |
Stuntwoman Sues News Corp. Over Alleged Phone HackLOS ANGELES (AP) — A woman who worked as a stunt double for Angelina Jolie sued Rupert Murdochs News Corp. in Los Angeles on Tuesday, claiming shes a victim of a phone hacking scheme to obtain information about the actress. |
The NSA Hearing, By The NumbersA federal hearing today on NSA surveillance programs leaked by former NSA contractor Edward Snowden produced some interesting numbers about the scope of the data collections and other issues. Weve produced a roundup below of some of the interesting stats... |
Tor Users Locked Out Of Facebook After Wave Of Dodgy TrafficDont panic, a solution is at hand Users of the Tor traffic anonymizing service are currently locked out of Facebook after a flood of dodgy traffic triggered an automatic lockdown by the social networks security systems.… |
Purdue Students Charged With Hacking To Change GradesThree students allegedly installed keylogging devices in their professors keyboards in order to determine their account passwords. |
Hacker Publishes Philippine Presidents Phone NumbersThe presidents spokesman described the action as cyber vandalism plain and simple. |
UK Trust Fined For Medical Data BreachThree patients names, addresses, medical histories, and details of their physical and mental health were exposed. |
|
| » See More » |
|
| Latest News from Research Labs |
Hospitality Spam Takes A New RideHospitality is the friendly bonding between the guest and host, especially efforts to make the guest feel comfortable. Spammers exploit hospitality events, and the bond between guest and host, with fake promotional offers. We are currently observing an... |
Detecting Hidden Administrator Apps On Your Mobile DeviceLast week, we talked about the OBAD Android malware, which installed itself as an administrator on the device and used a vulnerability in Android to hide this fact from the user. One effect of this particular behavior was to make removal of this threat... |
Oracle Improves Java Security – What It Means For End UsersAbout two weeks ago, Oracle published a blog post describing and promising to improve the security of Java. Since then, Ive been asked a few times: what exactly did they say, and what does it mean for end users? First, Oracle talked about how theyre... |
Vulnerability Disclosure – Open Or Private?At the end of May, two Google security engineers announced Mountain Views new policy regarding zero-day bugs and disclosure. They strongly suggested that information about zero-day exploits currently in the wild should be released no more than seven days... |
Time To Disable Java From Your Browser?After the US CERT, an organization belong to the American government, published multiple security warnings since the beginning of the year, its probably a good advice to disable the functionality of Java in your browser, if you havent done so already.
Multiple... |
|
| » See More » |
|
| Latest Security Videos & Podcasts |
EMET V4.0 Enhanced Mitigation Experience Toolkit ReleasedThe Enhanced Mitigation Experience Toolkit (EMET) is designed to help prevent hackers from gaining access to your system. Software vulnerabilities and exploits have become an everyday part of life....[[ This is a content summary only. Visit my website... |
Dradis Pro V1.7 ReleasedDradis Pro is framework to enable effective information sharing, specially during security assessments. Dradis is a self-contained web application that provides a centralised repository of...[[ This is a content summary only. Visit my website for full... |
Nishang V0.2.7 ReleasedNishang is a framework and collection of scripts and payloads which enables usage of PowerShell for offensive security and post exploitation during Penetraion Tests. The scripts are written on the...[[ This is a content summary only. Visit my website... |
Interview With Bruce Potter And JP Bourget - Episode 335We have JP Bourget and Bruce Potter on the show to announce their ball busting ride across the USA, CycleOverride . CycleOverride is planning a series of rides over the coming years that revolve around information security and fundraising for organizations... |
Interview With Bill Stearns - Episode 335Bill is a Security Analyst and Instructor for CloudPassage. He also serves as a content author and faculty member at the SANS Institute, teaching the Linux System Administration, Perimeter Protection, Securing Linux and Unix, and Intrusion Detection tracks.... |
|
| » See More » |
|
| Latest Security Papers & Presentations |
Near Field Communication (NFC) Technology, Vulnerabilities And Principal Attack SchemaIntroduction The Near Field Communication (NFC) is a set of standards for mobile devices designed to establish radio communication with each other by being touched together or brought within a short...Go on to the site to read the full article |
Glastopf Pi: A Simple Yet Cool Web Honeypot For Your Raspberry PiNow lets have another cool setup for your Raspberry Pi! If you are a follower of my recent articles, you will notice that I am really into consoles, handy devices, and Raspberry Pi; in fact, I...Go on to the site to read the full article |
[Slides] Blind XSSTags: XSSEvent: DEFCON 20 |
[webapps] - Havalite CMS 1.1.7 - Unrestricted File Upload ExploitHavalite CMS 1.1.7 - Unrestricted File Upload Exploit |
[local] - Adrenalin Player 2.2.5.3 (.wax) - SEH Buffer OverflowAdrenalin Player 2.2.5.3 (.wax) - SEH Buffer Overflow |
|
| » See More » |
|
| Upcoming Security Conferences |
Hack In Paris Paris - Jun 17-Jun 21 2013 Hack In Paris will let its attendees discover the concrete reality of hacking, and its consequences for companies. The program includes the state of the art of IT security, industrial espionage, penetration testing, physical security, forensics, malware... |
Nuit Du Hack 2013 Paris, France - Jun 22-Jun 23 2013 The Nuit Du Hack was initiated in 2003 by the French hacking group: Hackerzvoice. This event has been gathering people willing to learn and share their knowledge around lectures and challenges since. |
5HAKACON Honolulu, Hawaii - Jun 25-Jun 28 2013 Shakacon, an Information Technology (IT) Security Conference, is back and ready to invite business executives, government and military officials, security professionals, and IT enthusiasts to participant in Hawaii"s only Call for Paper based IT security... |
DIMVA Security Conference Berlin, Germany - Jul 18-Jul 19 2013 The annual DIMVA conference serves as a premier forum for advancing the state of the art in intrusion detection, malware detection, and vulnerability assessment. Each year, DIMVA brings together international experts from academia, industry, and government... |
Black Hat USA 2013 Lasvegas, NV, USA - Jul 27-Aug 1 2013 The Black Hat Briefings remains the biggest and the most important technical security conference series in the world by remaining true to our core value: serving the information security community by delivering timely, actionable security information |
Passwords^13 Las Vegas, USA - Jul 30-Jul 31 2013 PasswordsCon is the first and only conference of its kind, where security & forensics experts from around the globe meet to discuss only digital authentication security in all forms, shapes, and sizes: passwords, passphrases, passcodes, PIN codes, federated... |
DEFCON 21 Hacking Conference Las vegas, USA - Aug 1-Aug 4 2013 Defcon is one of the worlds largest annual computer hacker conventions, held every year in Las Vegas, Nevada.The event consists of several tracks of speakers about computer security and hacking, as well as social events and contests in everything... |
OWASP AppSec Europe Research 2013 Hamburg, Germany - Aug 20-Aug 23 2013 The AppSec Europe 2013 conference will be a premier gathering of Information Security leaders, also it is going to have a research part.Executives from Fortune 500 firms along with technical thought leaders such as security architects and lead developers... |
|
| » See More » |
|
|
