Notices tagged with security
-
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864} (lnxw48a1)'s status on Thursday, 05-Nov-2020 12:03:48 EST 
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864}
@aab has found something to block some traffic from unwanted portscans: https://dodweil.us/security/ufw-fail2ban-portscan.html
#security #NoteToSelf -
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864} (lnxw48a1)'s status on Sunday, 01-Nov-2020 12:06:34 EST
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864}
@geniusmusing See https://hackers.town/@devrandom/105136083240782878
#security -
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864} (lnxw48a1)'s status on Saturday, 31-Oct-2020 12:32:38 EDT
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864}
#Google discloses #Microsoft #Windows 10 #zero-day vulnerability that is currently being exploited in the wild. Also patched a #Chrome zero-day. https://www.zdnet.com/article/google-discloses-windows-zero-day-exploited-in-the-wild/ [www zdnet com]
#Win10 #security
Patch incoming 2020-11-10, #Patch_Tuesday. -
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864} (lnxw48a1)'s status on Sunday, 27-Sep-2020 22:43:43 EDT
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864}
FastCompany: Don't share #passwords with your GF or BF until you read this https://www.fastcompany.com/90556503/dont-share-passwords-with-your-gf-or-bf-until-you-read-this [www fastcompany com]
I didn't know people still did this.
#security #relationships -
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864} (lnxw48a1)'s status on Tuesday, 22-Sep-2020 21:57:14 EDT
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864}
Chinese antivirus firm part of malware / ransomware group https://krebsonsecurity.com/2020/09/chinese-antivirus-firm-was-part-of-apt41-supply-chain-attack/ #security -
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864} (lnxw48a1)'s status on Friday, 21-Aug-2020 17:05:22 EDT
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864}
#ISC's #BIND continues to have security holes one after another. I do sometimes wonder why we (the world as a whole) haven't migrated to something descended from DJBDNS.
#DNS #security -
GeniusMusing (geniusmusing)'s status on Thursday, 30-Jul-2020 11:21:28 EDT 
GeniusMusing
VU174059 GRUB2 bootloader is vulnerable to buffer overflow
https://www.kb.cert.org/vuls/id/174059
>Overview
>
>The GRUB2 boot loader is vulnerable to buffer overflow, which results in arbitrary code execution during the boot process, even when Secure Boot is enabled.
I cannot say this is related but I updated grub last night on my backup server and it no longer boots.
#security #buffer #overflow #grub2 -
GeniusMusing (geniusmusing)'s status on Thursday, 30-Jul-2020 11:21:28 EDT
GeniusMusing
VU174059 GRUB2 bootloader is vulnerable to buffer overflow
https://www.kb.cert.org/vuls/id/174059
>Overview
>
>The GRUB2 boot loader is vulnerable to buffer overflow, which results in arbitrary code execution during the boot process, even when Secure Boot is enabled.
I cannot say this is related but I updated grub last night on my backup server and it no longer boots.
#security #buffer #overflow #grub2 -
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864} (lnxw48a1)'s status on Friday, 12-Jun-2020 16:18:23 EDT
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864}
https://finance.yahoo.com/news/nintendo-now-says-300-000-165803999.html [finance yahoo com]
#Nintendo now estimates almost twice as many accounts were breached as its previous estimate. 300K online accounts were compromised, exposing PII. According to the company, this is still less than 1% of its userbase.
#security #breach #accounts #crack #compromise #repassword -
drak (drak)'s status on Friday, 22-May-2020 12:55:13 EDT 
drak
How to get #security into the development workflow of your organization: https://www.youtube.com/watch?v=GsefBF_wECI #DevSecOps #programming -
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864} (lnxw48a1)'s status on Wednesday, 13-May-2020 01:20:56 EDT
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864}
https://www.zdnet.com/article/huawei-denies-involvement-in-buggy-linux-kernel-patch-proposal/ [www zdnet com]
#Huawei says the #HKSP project and its recently-submitted security patch for the #Linux kernel is not an official company project, but an employee's personal project. "Trivially exploitable" flaws found in patch.
#security #patch #Linux_kernel #GRSecurity -
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864} (lnxw48a1)'s status on Tuesday, 07-Apr-2020 19:30:12 EDT
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864}
http://status.hackerposse.com/url/20705 [www theregister co uk] Yet another reason to wonder whether #Zoom’s management is just ignorant about #privacy and #security, or actively malicious. “End to end” encryption has a specific meaning, namely that messages sent from your device are encrypted until they arrive at your recipients’ devices, so that no one in between, in… -
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864} (lnxw48a1)'s status on Monday, 06-Apr-2020 19:29:08 EDT
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864}
US schools banning #Zoom and switching to #MSTeams https://betanews.com/2020/04/05/us-schools-ban-zoom/ [betanews com] due to widespread #harassment (“Zoombombing”) and #security and #privacy issues. -
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864} (lnxw48a1)'s status on Monday, 23-Mar-2020 18:34:00 EDT
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864}
Oh, wonderful. A #Zero-day with #RCE on #Windows ... currently unpatched.
See: https://freeradical.zone/@tek/103874683857159931
#security #infosec -
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864} (lnxw48a1)'s status on Tuesday, 14-Jan-2020 14:38:54 EST
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864}
https://thehackernews.com/2020/01/warning-quickly-patch-new-critical.html Emergency #security patch for #Win10. Update #Windows today! -
Joshua Judson Rosen (rozzin)'s status on Wednesday, 25-Sep-2019 05:32:22 EDT 
Joshua Judson Rosen
#Termbin is a nice #pastebin !hack https://termbin.com/
Obvious down side: no #TLS #security.
But it's also #nonobvious if any of the other pastebin tools use TLS—where TLS is easily added in front of #termbin and clients just swap #netcat for #socat or #gnutls.
#transparency -
Björn Schießle ???? ???????? (bjoern)'s status on Wednesday, 02-Jan-2019 04:49:23 EST 
Björn Schießle ???? ????????
In January, the #EU is launching bug bounties on #FreeSoftware projects to increase the #security of the #Internet! https://juliareda.eu/2018/12/eu-fossa-bug-bounties #FOSSA
-
Björn Schießle ???? ???????? (bjoern)'s status on Wednesday, 02-Jan-2019 04:49:23 EST
Björn Schießle ???? ????????
In January, the #EU is launching bug bounties on #FreeSoftware projects to increase the #security of the #Internet! https://juliareda.eu/2018/12/eu-fossa-bug-bounties #FOSSA
-
Joshua Judson Rosen (rozzin)'s status on Wednesday, 21-Nov-2018 13:55:42 EST
Joshua Judson Rosen
Conversations with kids, about #umwelt, #superpowers, and #infosec:
"Why are they looking at me?"
"Because they heard you fart."
"Whhhhat do you mean?!?!"
"Hearing people can hear farts."
…
https://www.jwz.org/blog/2018/11/tell-them-to-stop-listening-to-my-farts/
!education !parenting #poop !security -
MMN-o ✅⃠ (mmn)'s status on Wednesday, 10-Oct-2018 11:16:40 EDT 
MMN-o ✅⃠
Recently I had to bypass the Factory Reset Protection on a #Nexus6 #Android. I'm astounded how badly #Google engineers implement security considering the reputation of their excellence: https://umeahackerspace.se/2018/10/08/bypassing-frp-factory-reset-protection-on-nexus-6-and-other-relatively-modern-android-phones/ !security !umehack
All Hacker Poesy content and data are available under the