Posted on August 21st, 2008 by Administration
WASHINGTON - A hacker broke into a Homeland Security Department telephone system over the weekend and racked up about $12,000 in calls to the Middle East and Asia.
The hacker made more than 400 calls on a Federal Emergency Management Agency voicemail system in Emmitsburg, Md., on Saturday and Sunday, according to FEMA spokesman Tom Olshanski.
FEMA [...]
Filed under: hax, lulz, vuls | No Comments »
Posted on August 20th, 2008 by Administration
DEFCON, the 9000+ attendee hacker conference in Vegas has become a sort of hydra conference. It has become more like a global fair than what most people think of conferences; even the badge is highly unique. I say this because there are so many things to do at DEFCON, other than going to talks, that [...]
Filed under: b3st pract1c3s, crypto, defcon, exploit, hax, linux, malware, opensource, privacy, security, vuls | No Comments »
Posted on August 19th, 2008 by Administration
Criminals exploit wireless vulnerabilities, social engineering to collect large volumes of customer data.
Filed under: privacy, vuls, wifi | No Comments »
Posted on July 17th, 2008 by Administration
Mozilla has released Firefox 3.0.1 to address three vulnerabilities. Exploitation of these vulnerabilities may allow a remote attacker to execute arbitrary code or cause a denial-of-service condition. One of these vulnerabilities may also affect Thunderbird and SeaMonkey. Two of these vulnerabilities were previously fixed in Firefox 2.0.0.16 as well; please see the US-CERT Current Activity [...]
Filed under: firefox, vuls | No Comments »
Posted on June 19th, 2008 by Administration
Now this is just funny… If you own a Jura F90 Coffee Maker, you can also buy a Jura Internet Connection Kit, which lets you program and set your coffee prefs via the network: however, its got a bunch of vulnerabilities that allow for remote denial-of-coffee attacks:
Guess what - it can not be patched as [...]
Filed under: lulz, vuls | 1 Comment »
Posted on June 15th, 2008 by Administration
So you have been coding a new CMS for your site… making every effort to make sure any/all user inputted data is escaped properly, but you still would like to remain paranoid and scan for vulnerabilities. We don’t blame you. sqlmap has been around for awhile, but now there are other choices.
Take a look at [...]
Filed under: vuls | No Comments »
Posted on March 28th, 2008 by Administration
San Francisco - It may be the quickest $10,000 Charlie Miller ever earned.
He took the first of three laptop computers — and a $10,000 cash prize — Thursday after breaking into a MacBook Air at the CanSecWest security conference’s PWN 2 OWN hacking contest.
Show organizers offered a Sony Vaio, Fujitsu U810, and the MacBook as [...]
Filed under: apple, hax, lulz, security, vuls | No Comments »
Posted on March 26th, 2008 by Administration
VLC is a popular media player among BitTorrent users. Not just for the fact that it is free, also because it includes a huge number of the video codecs, so it can play virtually every video file available.Unfortunately, the latest versions of VLC have a security flaw according to a report from Luigi Auriemma. The [...]
Filed under: offtopic, security, vuls | No Comments »
Posted on February 11th, 2008 by Administration
There is a new local root exploit found in linux kernels 2.6.17 to 2.6.24.1. Here’s a proof-of-concept, which basically works as a “passwordless su”.
I have tested the exploit on a few systems I manage, and it just plain works on a number of them. The distros I have around that are vulnerable are:
Fedora 8
CentOS [...]
Filed under: linux, security, vuls | No Comments »
Posted on January 30th, 2008 by Administration
“Following Google’s crackdown on ‘domain tasters’, ICANN has voted unanimously to eliminate the free period that many domain buyers have been taking advantage of. At the same meeting they also discussed Network Solutions’ front running but took no action on it.”
Source
ICANN’s Release
Filed under: vuls | No Comments »
Posted on January 26th, 2008 by Administration
Sorry for the typical and tredy “myspace pic” above. This is an article from Wired Magazine. It might be the largest “security breach” in awhile but what on earth would anyone do with 17gb of random Myspace teenagers?
A 17-gigabyte file purporting to contain more than half a million images lifted from private MySpace profiles has [...]
Filed under: lulz, privacy, security, vuls | No Comments »
Posted on January 12th, 2008 by Administration
Long story shorts now banned from attending CES. They walked around and turned off people’s tvs during presentations. Sucks to be a gadget blog banned from CES.
Click the link below to view the video Gizmodo made of their mischief.
CES has no shortage of displays. And when MAKE offered us some TV-B-Gone clickers to bring [...]
Filed under: lulz, vuls | No Comments »
Posted on December 5th, 2007 by Administration
The vulnerability, called the Apple QuickTime RTSP Response Header Stack-Based Buffer Overflow Vulnerability, was first disclosed on Nov. 23rd and still remains unpatched. The vulnerability can be exploited through Internet Explorer, Firefox, Opera, and Safari and effects both Windows and Mac users.
First observed on Saturday, the attacks appear to be aimed at Windows users, but [...]
Filed under: apple, security, vuls | No Comments »
Unlinker Firefox Add-On
BeautyandtheBoost.com
