Latest Articles

[img_assist|nid=5651|title=|desc=|link=none|align=left|width=90|height=90]A flaw in the module pam_motd (message of the day), which
displays the daily motto and other information after login (to the
shell), can be exploited under Ubuntu to expand access rights. Read the full article. [The H Security]

Read more...

[img_assist|nid=5641|title=|desc=|link=none|align=right|width=100|height=100]For years now, Adobe Flash files have been a very useful attack vector for hackers and a serious security problem for end users and IT departments. Now, a German researcher is planning to unveil a new browser plug-in designed to prevent many common types of Flash attacks.

Read more...

Categories: Cryptography

[img_assist|nid=5639|title=|desc=|link=none|align=right|width=100|height=100]A new approach to adding an encrypted watermark to digital images allows
the an image to be validated against a pass key, according to research according to research published in the International Journal of Signal and Imaging Systems Engineering. Read the full article. [Science Daily]

Read more...

Categories: Vulnerabilities

By Alex Rothacker[img_assist|nid=5194|title=|desc=|link=none|align=left|width=100|height=100]SQL injection is the most common penetration technique employed by hackers to steal valuable information from corporate databases. Yet, as widespread as this method of attack is, a seemingly infinite number of ‘sub-methods,’ or variations of SQL Injection attacks can be carried out against the database.  

Read more...

Categories: Web Security

By Gunter Ollmann[img_assist|nid=4098|title=|desc=|link=none|align=left|width=90|height=90]Common wisdom over the last couple of decades has been to never write
down the passwords you use for accessing networked services. But is now
the time to begin writing them down? Threats are constantly evolving
and perhaps it’s time to revisit one of the longest standing idioms of
security – “never write a password down”.

Read more...

[img_assist|nid=5309|title=|desc=|link=none|align=left|width=100|height=100]An anonymous group of security researchers last
week published information about an unpatched Windows bug, saying that
they were disclosing the vulnerability because of the way Microsoft
treated a colleague. The flaw in Windows Vista and Server 2008
could be used by attackers to gain unauthorized access to a PC or cause
it to crash. Read the full article. [Computerworld]

Read more...