Search
Items tagged with: InfoSec
Novel attack against virtually all VPN apps neuters their entire purpose
TunnelVision vulnerability has existed since 2002 and may already be known to attackers.Ars Technica
Urgent security alert for Fedora Linux 40 and Fedora Rawhide users
Red Hat Information Risk and Security and Red Hat Product Security learned that the latest versions of the “xz” tools and libraries contain malicious code that appears to be intended to allow unauthorized access., (Red Hat)
Uhhh heads up everyone:
https://lwn.net/ml/oss-security/20240329155126.kjjfduxw2yrlxgzm@awork3.anarazel.de/
> After observing a few odd symptoms around liblzma (part of the xz package) on Debian sid installations over the last weeks (logins with ssh taking a lot of CPU, valgrind errors) I figured out the answer:
> The upstream xz repository and the xz tarballs have been backdoored.
As far as Debian is concerned, seems like only Sid was affected (fixed):
https://lists.debian.org/debian-security-announce/2024/msg00057.html
Generally, XZ Utils versions 5.6.0 and 5.6.1.
The whole story:
Users ditch Glassdoor, stunned by site adding real names without consent.
#infosec #security #IT #enshitification #jobs
Users ditch Glassdoor, stunned by site adding real names without consent
Anonymous review site Glassdoor now consults public sources to identify users.Ars Technica
Libera Chat is an Internet Relay Chat (IRC) network that supports connecting via Tor using their Onion Service, this provides a layer of anonymity and security.
IRC: https://en.wikipedia.org/wiki/Internet_Relay_Chat
Tor: https://www.torproject.org/about/history
Tor Onion Service: https://community.torproject.org/onion-services
Website: https://libera.chat
Mastodon: @liberachat
#Libera #LiberaChat #IRC #Tor #Encryption #Anonymity #Security #OpenSource #InfoSec
The Tor Project | Privacy & Freedom Online
Defend yourself against tracking and surveillance. Circumvent censorship.www.torproject.org
Creativity for creating PSK
Ubee DDW365 XCNDDW365 and DDW366 XCNDXW3WB devices have predictable default WPA2 PSKs that could lead to unauthorized remote access. A remote attacker (in proximity to a Wi-Fi network) can derive the default WPA2-PSK value by observing a beacon frame. A PSK is generated by using the first six characters of the SSID and the last six of the BSSID, decrementing the last digit.
TR-567d30 - CIRCL Unveils Festive Nostalgic Initiatives - Gopher Protocol and Bulletin Board System Revival
🔗 https://www.circl.lu/pub/tr-567d30/
Enjoy your holidays! 🎄 🥳
#opensource #retrocomputing #bbs #infosec
A WIRED investigation into internet censorship in US schools found widespread use of filters to censor health, identity, and other crucial information. Students say it makes the web entirely unusable.
Analysis of more than 117 million censorship records confirms what students and civil rights advocates have long warned: Web filters are preventing kids from finding critical information about their health, identity, and the subjects they’re studying in class.
https://www.wired.com/story/inside-americas-school-internet-censorship-machine/
LibreOffice supports symmetric and asymmetric encryption for OpenDocument Format (ODF) files.
Select File > Save/Save As
The "Save with password" option encrypts the file with AES-256.
The "Encrypt with GPG key" option encrypts the file with a public key.
Symmetric encryption: https://en.wikipedia.org/wiki/Symmetric-key_algorithm
Asymmetric encryption: https://en.wikipedia.org/wiki/Public-key_cryptography
Website: https://www.libreoffice.org
Mastodon: @libreoffice
#LibreOffice #Encryption #OpenSource #OpenPGP #PGP #GnuPG #GPG #InfoSec #Privacy #Security
Ransomware attack leaks nearly every Maine resident's data - Desk Chair Analysts
https://dcanalysts.net/ransomware-attack-leaks-nearly-every-maine-residents-data/
#InfoSec #Maine #MOVEit #Ransomware #Security #TechNews
Ransomware attack leaks nearly every Maine resident's data - Desk Chair Analysts
A few months ago, Maine was hit by a ransomware attack. We are now just learning how bad the attack was for the government and its citizens.MajorLinux (Desk Chair Analysts)