Najnowsze wpisy
Attention PGP Users: New Vulnerabilities Require You To Take Action Now
A group of European security researchers have released a warning about a set of vulnerabilities affecting users of PGP and S/MIME. EFF has been in communication with the research team, and can confirm that these vulnerabilities pose an immediate risk to those using these tools for email communication, including the…
Twitter says bug exposed user plaintext passwords
When you set a password for your Twitter account, we use technology that masks it so no one at the company can see it. We recently identified a bug that stored passwords unmasked in an internal log. We have fixed the bug, and our investigation shows no indication of breach…
GitHub Accidentally Recorded Some Plaintext Passwords in Its Internal Logs
In an email sent out today, GitHub has warned a select number of users that a bug in its password reset functionality has recorded users’ passwords in plaintext format inside the company’s internal logs. Read more: https://www.bleepingcomputer.com/news/security/github-accidentally-recorded-some-plaintext-passwords-in-its-internal-logs/
Kali Linux 2018.2 Release
This Kali release is the first to include the Linux 4.15 kernel, which includes the x86 and x64 fixes for the much-hyped Spectre and Meltdown vulnerabilities. It also includes much better support for AMD GPUs and support for AMD Secure Encrypted Virtualization, which allows for encrypting virtual machine memory such…
Update now! Microsoft’s April 2018 Patch Tuesday – 65 vulns, 24 critical
With the Windows 10 1803 Spring Creators Update delayed at the eleventh hour for unknown reasons, admins and end users will still receive plenty of updates in the April 2018 Patch Tuesday. The big picture is 65 security fixes assigned CVE numbers, 23 of which (plus a separate Adobe Flash…
Uso defensivo y ofensivo de Open Source Intelligence (OSINT).
Open Source Intelligence (OSINT), o más precisamente, el uso de fuentes de inteligencia de código abierto para perfilar la exposición en Internet de las organizaciones es decir, footprinting, es una área un muy interesante dentro de la seguridad de la información, particularmente porque es más o menos abierta, lo que…
Logs in High Sierra (10.13) Show Plaintext Password
Uh Oh! Unified Logs in High Sierra (10.13) Show Plaintext Password for APFS Encrypted External Volumes via Disk Utility.app Read more: https://www.mac4n6.com/blog/2018/3/21/uh-oh-unified-logs-in-high-sierra-1013-show-plaintext-password-for-apfs-encrypted-external-volumes-via-disk-utilityapp
New Cloudflare DNS service filtered in Turkey on day of launch
An investigation by Turkey Blocks has found that Turkey’s DNS blocking measures are already actively filtering a new DNS service launched by Cloudflare and APNIC on 1 April 2018. Addresses for Wikipedia and Dutch national broadcaster NOS among several other sites known to be withheld in the country are failing…
Chrome Is Scanning Files on Your Computer, and People Are Freaking Out
Some cybersecurity experts and regular users were surprised to learn about a Chrome tool that scans Windows computers for malware. But there’s no reason to freak out about it. Read more: https://motherboard.vice.com/en_us/article/wj7x9w/google-chrome-scans-files-on-your-windows-computer-chrome-cleanup-tool
OpenBSD 6.3 RELEASED
We are pleased to announce the official release of OpenBSD 6.3. This is our 44th release. We remain proud of OpenBSD’s record of more than twenty years with only two remote holes in the default install. Read more: https://marc.info/?l=openbsd-announce&m=152267725618055
Ever Record a Video on Facebook? Facebook Still Has It.
Have you downloaded your Facebook data archive yet? Facebook makes it easy to obtain a ZIP file of all the data it has on you: your status updates, your friend list, your messages … and, as I and several people I spoke with were surprised to discover, every video you…
Wyciek danych użytkowników popularnej aplikacji MyFitnessPal
Zdrowe odżywianie, choć bardzo dobre dla zdrowia, może okazać się nie tak dobre dla bezpieczeństwa Waszych haseł. Z tego powodu warto także zadbać o zdrowe nawyki w obszarze bezpieczeństwa i prywatności. Czytaj więcej: Wyciek danych użytkowników popularnej aplikacji MyFitnessPal