-
Comodo hacker claims credit for DigiNotar attack
The hacker responsible for a stunning attack on a Dutch company that issues security certificates for websites warned on Monday that he would “strike back again,” after previously breaching another company earlier this year. The hacker posted the warning on Pastebin under the handle “Comodohacker.” The same account was used earlier this year to describe…
-
NSA extends label-based security to big data stores
The National Security Agency has submitted new label-based data store software, called Accumulo, to the Apache Software Foundation, in hopes that other parties will further develop the technology for use in secure systems. via NSA extends label-based security to big data stores.
-
Hackers steal SSL certificates for CIA, MI6, Mossad – Computerworld
The tally of digital certificates stolen from a Dutch company in July has exploded to more than 500, including ones for intelligence services like the CIA, the U.K.s MI6 and Israels Mossad, a Mozilla developer said Sunday. The confirmed count of fraudulently-issued SSL secure socket layer certificates now stands at 531, said Gervase Markham, a…
-
Encyclopedia entry: Worm:Win32/Morto.gen!A – Learn more about malware – Microsoft Malware Protection Center
Worm:Win32/Morto.gen!A is a worm that allows unauthorized access to an affected computer. It spreads by trying to compromise administrator passwords for Remote Desktop connections on a network. via Encyclopedia entry: Worm:Win32/Morto.gen!A – Learn more about malware – Microsoft Malware Protection Center.
-
DigiNotar CA compromise – Security Labs
According to DigiNotar’s own investigation, they found out that they were compromised on July 19, 2011, and several rogue SSL certificates had been issued including the one to *.google.com. All the other ones were revoked, but for some reason, DigiNotar missed revoking the one issued for Google’s domain. Why is this important? With the rogue…
-
Chinese military hacking caught on video? Not so fast | Hacking – InfoWorld
Now, there is certainly plenty of hacking coming from China, but Im not convinced its a large-scale, staged effort directed by the government or the military. What seems like a coordinated, centralized attack could be the natural outcome of the worlds largest population coming into the computer age — the result of a large number…
-
Submit your IA jobs via comments
-
Was this the email that took down RSA?
“I forward this file to you for review. Please open and view it.” As a ploy to get a hapless EMC recruiter to open up a booby-trapped Excel spreadsheet, it may not be the most sophisticated piece of work. But researchers at F-Secure believe that it was enough to break into one of the most…
-
China hacking video shows glimpse of Falun Gong attack tool
The clip shows up without explanation, lasting for about six seconds during a rather mundane documentary about hacking produced by the state-sponsored China Central Television The video appears to give a peek at a state-sponsored hacking tool used to disrupt the operations of a spiritual movement that the government of China considers a threat to…
-
‘Kill tool’ released for unpatched Apache server vulnerability | ZDNet
The open-source Apache Foundation has warned that attack tool has been released for a serious vulnerability in the Apache HTTPD Web Server. The ‘killapache’ attack tool is currently circulating in the wild. “Active use of this tools has been observed, Apache warned. via ‘Kill tool’ released for unpatched Apache server vulnerability | ZDNet.
Got any book recommendations?