interesting news and opinions about IT security
Back in July, sfgate.com reports that many tech gadgets are available for paranoid parents.
Now parents can track their kids’ driving, read their IMs and know where their exact location is.
The New York Times reports on 23rd Oct that university researchers found that next generation RFID based cards info are not encrypted and easily culled: (more…)
Nicknamed “DVD Jon”, infamous for coauthoring DeCSS, which decodes the content-scrambling system used for DVD licensing enforcement. (more…)
As reported by computerworld.com on 17th Oct:
Hackers are developing new software that will help hide browser attack code from some types of security software.
The software, called VoMM (eVade o’ Matic Module), uses a variety of techniques to mix up known exploit code so as to make it unrecognizable to some types of antivirus software. (more…)
As submitted by Gregd at digg:
“This article looks at user privileges and, in particular, examines how to manipulate file permissions to restrict or share your directories and files with others. Understanding permissions is crucial if you want to speak UNIX fluently…” (more…)
eyeball-series.org chronicles a brief history of hackers and hacking.
Longhorn is the next version for Microsoft Server 2003.
An anonymous reader posted in /. that:
“The ‘most secure Windows ever‘ may be very secure from hackers and malware — but what do you do when Longhorn Server lets you install the OS, set up Active Directory, and initialize the domain without once asking you even to create an administrator password? From the article: ‘What happened to Windows Server? Where did all of the stringent security checks and ultra-protection of Windows Server 2003 go? Windows Server 2000 was quite insecure, and Windows Server 2003 turned over a new leaf… But it seems Microsoft is more than willing to flip that page back — even Windows Server 2000 required an Administrator password at the very least.’” (more…)
Back on 18th August, techrepublic reports that
Microsoft on Thursday issued a “hotfix” for a fault in a security patch designed to correct a flaw already being targeted by worms.
The company is making the hotfix, or repair code targeted to a specific issue, available upon request, according to a posting on its Web site. The fix addresses the problem of programs failing if they request one gigabyte or more of information on a patched system. (more…)
The New York Times reports on 23rd Oct that university researchers found that next generation RFID based cards info are not encrypted and easily culled:
"They could skim and store the information from a card with a device the size of a couple of paperback books, which they cobbled together from readily available computer and radio components for $150. They say they could probably make another one even smaller and cheaper: about the size of a pack of gum for less than $50. And because the cards can be read even through a wallet or an item of clothing, the security of the information, the researchers say, is startlingly weak. ‘Would you be comfortable wearing your name, your credit card number and your card expiration date on your T-shirt?’ Mr. Heydt-Benjamin, a graduate student, asked."
Tags: RFID, credit cards
Subscribe in a reader
Or, subscribe via email: